Shorewall 4.4.20.3 Dump at cyber-master - Thu Jun 30 01:26:26 ART 2011 Counters reset Thu Jun 30 01:26:21 ART 2011 Chain INPUT (policy DROP 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 329 17193 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW 371 20339 lan2fw all -- eth5 * 0.0.0.0/0 0.0.0.0/0 127 53886 inet2fw all -- eth4 * 0.0.0.0/0 0.0.0.0/0 8 1654 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0 0 0 Reject all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix "Shorewall:INPUT:REJECT:" 0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0 [goto] Chain FORWARD (policy DROP 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 1738 225K lan2inet all -- eth5 eth4 0.0.0.0/0 0.0.0.0/0 1942 1898K inet_frwd all -- eth4 * 0.0.0.0/0 0.0.0.0/0 0 0 lo_fwd all -- lo * 0.0.0.0/0 0.0.0.0/0 0 0 Reject all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix "Shorewall:FORWARD:REJECT:" 0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0 [goto] Chain OUTPUT (policy DROP 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 322 21738 fw2lan all -- * eth5 0.0.0.0/0 0.0.0.0/0 49 3783 fw2inet all -- * eth4 0.0.0.0/0 0.0.0.0/0 8 1654 ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 Chain Drop (0 references) pkts bytes target prot opt in out source destination 0 0 all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 reject tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:113 /* Auth */ 0 0 dropBcast all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 3 code 4 /* Needed ICMP types */ 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 11 /* Needed ICMP types */ 0 0 dropInvalid all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 135,445 /* SMB */ 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpts:137:139 /* SMB */ 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp spt:137 dpts:1024:65535 /* SMB */ 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 135,139,445 /* SMB */ 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 /* UPnP */ 0 0 dropNotSyn tcp -- * * 0.0.0.0/0 0.0.0.0/0 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp spt:53 /* Late DNS Replies */ Chain Reject (5 references) pkts bytes target prot opt in out source destination 307 15676 all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 reject tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:113 /* Auth */ 307 15676 dropBcast all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 3 code 4 /* Needed ICMP types */ 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 11 /* Needed ICMP types */ 306 15572 dropInvalid all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 reject udp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 135,445 /* SMB */ 0 0 reject udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpts:137:139 /* SMB */ 0 0 reject udp -- * * 0.0.0.0/0 0.0.0.0/0 udp spt:137 dpts:1024:65535 /* SMB */ 0 0 reject tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 135,139,445 /* SMB */ 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 /* UPnP */ 263 13061 dropNotSyn tcp -- * * 0.0.0.0/0 0.0.0.0/0 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp spt:53 /* Late DNS Replies */ Chain dropBcast (2 references) pkts bytes target prot opt in out source destination 1 104 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST 0 0 DROP all -- * * 0.0.0.0/0 224.0.0.0/4 Chain dropInvalid (2 references) pkts bytes target prot opt in out source destination 43 2511 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID Chain dropNotSyn (2 references) pkts bytes target prot opt in out source destination 1 41 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcpflags:! 0x17/0x02 Chain dynamic (7 references) pkts bytes target prot opt in out source destination Chain fw2inet (1 references) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 49 3783 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 Chain fw2lan (1 references) pkts bytes target prot opt in out source destination 322 21738 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 Chain inet2fw (1 references) pkts bytes target prot opt in out source destination 2 144 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW 2 144 smurfs all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW 1 40 tcpflags tcp -- * * 0.0.0.0/0 0.0.0.0/0 125 53742 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 22,10026 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 2 144 Reject all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix "Shorewall:inet2fw:REJECT:" 0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0 [goto] Chain inet2lan (1 references) pkts bytes target prot opt in out source destination 1942 1898K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:9055 0 0 ACCEPT udp -- * * 0.0.0.0/0 10.0.0.58 udp dpt:5000 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:9022 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:4899 0 0 ACCEPT udp -- * * 0.0.0.0/0 10.0.0.58 udp dpt:1194 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:3390 0 0 ACCEPT udp -- * * 0.0.0.0/0 10.0.0.58 udp dpt:3390 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:3060 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:3061 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:3070 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1500 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:8085 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:8065 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:6022 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:3306 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:8080 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:5900 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:3180 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:60443 0 0 ACCEPT udp -- * * 0.0.0.0/0 10.0.0.58 udp dpt:60443 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1433 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:3389 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1080 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1081 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:8481 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:5905 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:5906 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:5907 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1030 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1031 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:10025 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1035 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1036 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1032 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1040 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:2130 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:2131 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:2132 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:2133 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:213 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:2135 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1037 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1038 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1041 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1042 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1043 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1044 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1045 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:1046 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:2106 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:7777 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:5901 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:3388 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:34567 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:7010 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:7011 0 0 ACCEPT tcp -- * * 0.0.0.0/0 10.0.0.58 tcp dpt:7012 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 0 0 Reject all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix "Shorewall:inet2lan:REJECT:" 0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0 [goto] Chain inet_frwd (1 references) pkts bytes target prot opt in out source destination 0 0 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW 0 0 smurfs all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW 1561 1662K tcpflags tcp -- * * 0.0.0.0/0 0.0.0.0/0 1942 1898K inet2lan all -- * eth5 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT all -- * eth4 0.0.0.0/0 0.0.0.0/0 Chain lan2fw (1 references) pkts bytes target prot opt in out source destination 327 17049 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW 327 17049 smurfs all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW 341 18428 tcpflags tcp -- * * 0.0.0.0/0 0.0.0.0/0 44 3290 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 22,24,53,81,111,3128,8081,10000 22 1517 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 53,111,123 305 15532 Reject all -- * * 0.0.0.0/0 0.0.0.0/0 262 13020 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix "Shorewall:lan2fw:REJECT:" 262 13020 reject all -- * * 0.0.0.0/0 0.0.0.0/0 [goto] Chain lan2inet (1 references) pkts bytes target prot opt in out source destination 0 0 sfilter all -- * eth5 0.0.0.0/0 0.0.0.0/0 [goto] 299 19095 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW 299 19095 smurfs all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW 1241 155K tcpflags tcp -- * * 0.0.0.0/0 0.0.0.0/0 1439 206K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 5 520 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 294 18575 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 Chain lo_fwd (1 references) pkts bytes target prot opt in out source destination 0 0 sfilter all -- * lo 0.0.0.0/0 0.0.0.0/0 [goto] 0 0 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW Chain lo_in (0 references) pkts bytes target prot opt in out source destination 0 0 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW Chain logdrop (0 references) pkts bytes target prot opt in out source destination 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 Chain logflags (5 references) pkts bytes target prot opt in out source destination 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 4 level 6 prefix "Shorewall:logflags:DROP:" 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 Chain logreject (0 references) pkts bytes target prot opt in out source destination 0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0 Chain reject (12 references) pkts bytes target prot opt in out source destination 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match src-type BROADCAST 0 0 DROP all -- * * 224.0.0.0/4 0.0.0.0/0 0 0 DROP 2 -- * * 0.0.0.0/0 0.0.0.0/0 262 13020 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 reject-with tcp-reset 0 0 REJECT udp -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable 0 0 REJECT icmp -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-unreachable 0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited Chain sfilter (2 references) pkts bytes target prot opt in out source destination 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix "Shorewall:sfilter:DROP:" 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 Chain shorewall (0 references) pkts bytes target prot opt in out source destination Chain smurflog (2 references) pkts bytes target prot opt in out source destination 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix "Shorewall:smurfs:DROP:" 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 Chain smurfs (4 references) pkts bytes target prot opt in out source destination 0 0 RETURN all -- * * 0.0.0.0 0.0.0.0/0 0 0 smurflog all -- * * 0.0.0.0/0 0.0.0.0/0 [goto] ADDRTYPE match src-type BROADCAST 0 0 smurflog all -- * * 224.0.0.0/4 0.0.0.0/0 [goto] Chain tcpflags (4 references) pkts bytes target prot opt in out source destination 0 0 logflags tcp -- * * 0.0.0.0/0 0.0.0.0/0 [goto] tcpflags: 0x3F/0x29 0 0 logflags tcp -- * * 0.0.0.0/0 0.0.0.0/0 [goto] tcpflags: 0x3F/0x00 0 0 logflags tcp -- * * 0.0.0.0/0 0.0.0.0/0 [goto] tcpflags: 0x06/0x06 0 0 logflags tcp -- * * 0.0.0.0/0 0.0.0.0/0 [goto] tcpflags: 0x03/0x03 0 0 logflags tcp -- * * 0.0.0.0/0 0.0.0.0/0 [goto] tcp spt:0flags: 0x17/0x02 Log (/var/log/messages) NAT Table Chain PREROUTING (policy ACCEPT 464 packets, 26996 bytes) pkts bytes target prot opt in out source destination 464 26996 dnat all -- * * 0.0.0.0/0 0.0.0.0/0 Chain INPUT (policy ACCEPT 22 packets, 1517 bytes) pkts bytes target prot opt in out source destination Chain OUTPUT (policy ACCEPT 49 packets, 3783 bytes) pkts bytes target prot opt in out source destination Chain POSTROUTING (policy ACCEPT 272 packets, 12703 bytes) pkts bytes target prot opt in out source destination 267 18018 eth4_masq all -- * eth4 0.0.0.0/0 0.0.0.0/0 Chain dnat (1 references) pkts bytes target prot opt in out source destination 1 104 inet_dnat all -- eth4 * 0.0.0.0/0 0.0.0.0/0 Chain eth4_masq (1 references) pkts bytes target prot opt in out source destination 218 14235 SNAT all -- * * 10.0.0.0/24 0.0.0.0/0 to:192.168.150.99 Chain inet_dnat (1 references) pkts bytes target prot opt in out source destination 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:9055 to:10.0.0.58 0 0 DNAT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:5000 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:9022 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:4899 to:10.0.0.58 0 0 DNAT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:1194 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:3390 to:10.0.0.58 0 0 DNAT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:3390 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:3060 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:3061 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:3070 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1500 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8085 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8065 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:6022 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:3306 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8080 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:5900 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:3180 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:60443 to:10.0.0.58 0 0 DNAT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:60443 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1433 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:3389 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1080 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1081 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8481 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:5905 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:5906 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:5907 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1030 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1031 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:10025 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1035 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1036 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1032 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1040 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2130 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2131 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2132 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2133 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:213 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2135 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1037 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1038 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1041 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1042 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1043 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1044 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1045 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1046 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2106 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7777 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:5901 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:3388 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:34567 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7010 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7011 to:10.0.0.58 0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7012 to:10.0.0.58 Mangle Table Chain PREROUTING (policy ACCEPT 3909 packets, 2206K bytes) pkts bytes target prot opt in out source destination 3391 2148K CONNMARK all -- * * 0.0.0.0/0 0.0.0.0/0 connmark match ! 0x0/0xff CONNMARK restore mask 0xff 152 33001 routemark all -- eth4 * 0.0.0.0/0 0.0.0.0/0 mark match 0x0/0xff 2087 1974K tcpre all -- eth4 * 0.0.0.0/0 0.0.0.0/0 672 40911 tcpre all -- * * 0.0.0.0/0 0.0.0.0/0 mark match 0x0/0xff Chain INPUT (policy ACCEPT 507 packets, 76004 bytes) pkts bytes target prot opt in out source destination 507 76004 tcin all -- * * 0.0.0.0/0 0.0.0.0/0 Chain FORWARD (policy ACCEPT 3707 packets, 2146K bytes) pkts bytes target prot opt in out source destination 3707 2146K MARK all -- * * 0.0.0.0/0 0.0.0.0/0 MARK and 0xffffff00 3707 2146K tcfor all -- * * 0.0.0.0/0 0.0.0.0/0 Chain OUTPUT (policy ACCEPT 381 packets, 27333 bytes) pkts bytes target prot opt in out source destination 0 0 CONNMARK all -- * * 0.0.0.0/0 0.0.0.0/0 connmark match ! 0x0/0xff CONNMARK restore mask 0xff 381 27333 tcout all -- * * 0.0.0.0/0 0.0.0.0/0 mark match 0x0/0xff Chain POSTROUTING (policy ACCEPT 4088 packets, 2173K bytes) pkts bytes target prot opt in out source destination 4088 2173K tcpost all -- * * 0.0.0.0/0 0.0.0.0/0 Chain routemark (1 references) pkts bytes target prot opt in out source destination 26 3465 MARK all -- eth4 * 0.0.0.0/0 0.0.0.0/0 MAC 00:0C:42:07:54:58 MARK set 0x2 125 29432 MARK all -- eth4 * 0.0.0.0/0 0.0.0.0/0 MAC 00:0C:42:07:54:4D MARK set 0x3 151 32897 CONNMARK all -- * * 0.0.0.0/0 0.0.0.0/0 mark match ! 0x0/0xff CONNMARK save mask 0xff Chain tcfor (1 references) pkts bytes target prot opt in out source destination Chain tcin (1 references) pkts bytes target prot opt in out source destination Chain tcout (1 references) pkts bytes target prot opt in out source destination 0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 1030,1031,1037,1038 MARK set 0x2 0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 53,1023,9187,25,465,995,3306,10019,10020,10027,26000,443,1863,7001 MARK set 0x3 0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 6891:6900,1503,3389,5061,5050,5100 MARK set 0x3 51 3941 MARK udp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 9,53,7001,5000,5004,49152 MARK set 0x3 Chain tcpost (1 references) pkts bytes target prot opt in out source destination Chain tcpre (2 references) pkts bytes target prot opt in out source destination 305 15532 TPROXY tcp -- eth5 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 TPROXY redirect 0.0.0.0:3128 mark 0x1/0xffffffff 0 0 MARK tcp -- * * 10.0.0.0/24 0.0.0.0/0 multiport dports 1030,1031,1037,1038 MARK set 0x2 1 48 MARK tcp -- * * 10.0.0.0/24 0.0.0.0/0 multiport dports 53,1023,9187,25,465,995,3306,10019,10020,10027,26000,443,1863,7001 MARK set 0x3 0 0 MARK tcp -- * * 10.0.0.0/24 0.0.0.0/0 multiport dports 6891:6900,1503,3389,5061,5050,5100 MARK set 0x3 28 1915 MARK udp -- * * 10.0.0.0/24 0.0.0.0/0 multiport dports 9,53,7001,5000,5004,49152 MARK set 0x3 Raw Table Chain PREROUTING (policy ACCEPT 4228 packets, 2224K bytes) pkts bytes target prot opt in out source destination Chain OUTPUT (policy ACCEPT 381 packets, 27333 bytes) pkts bytes target prot opt in out source destination Conntrack Table (18200 out of 131072) ipv4 2 udp 17 7 src=10.0.0.58 dst=172.162.114.102 sport=20708 dport=38767 [UNREPLIED] src=172.162.114.102 dst=192.168.150.99 sport=38767 dport=20708 mark=0 zone=0 use=2 ipv4 2 tcp 6 66 TIME_WAIT src=10.0.0.58 dst=72.14.204.105 sport=2797 dport=80 src=72.14.204.105 dst=192.168.150.99 sport=80 dport=2797 [ASSURED] mark=3 zone=0 use=2 ipv4 2 tcp 6 424757 ESTABLISHED src=10.0.0.58 dst=72.14.204.164 sport=1796 dport=80 [UNREPLIED] src=72.14.204.164 dst=192.168.150.99 sport=80 dport=1796 mark=0 zone=0 use=2 ipv4 2 tcp 6 162613 ESTABLISHED src=23.2.17.98 dst=192.168.127.102 sport=80 dport=4533 [UNREPLIED] src=192.168.127.102 dst=23.2.17.98 sport=4533 dport=80 mark=0 zone=0 use=2 ipv4 2 tcp 6 83880 ESTABLISHED src=10.0.0.58 dst=192.168.31.99 sport=63666 dport=53 [UNREPLIED] src=192.168.31.99 dst=192.168.150.99 sport=53 dport=63666 mark=0 zone=0 use=2 ipv4 2 tcp 6 236818 ESTABLISHED src=66.220.151.85 dst=192.168.110.236 sport=80 dport=1520 [UNREPLIED] src=192.168.110.236 dst=66.220.151.85 sport=1520 dport=80 mark=0 zone=0 use=2 ipv4 2 tcp 6 124913 ESTABLISHED src=10.0.0.58 dst=79.183.193.139 sport=49260 dport=30574 src=79.183.193.139 dst=192.168.150.99 sport=30574 dport=49260 [ASSURED] mark=2 zone=0 use=2 ipv4 2 tcp 6 82513 ESTABLISHED src=69.171.242.39 dst=192.168.127.102 sport=80 dport=1429 [UNREPLIED] src=192.168.127.102 dst=69.171.242.39 sport=1429 dport=80 mark=0 zone=0 use=2 ipv4 2 tcp 6 238381 ESTABLISHED src=10.0.0.58 dst=200.125.75.73 sport=4811 dport=44322 src=200.125.75.73 dst=192.168.150.99 sport=44322 dport=4811 [ASSURED] mark=2 zone=0 use=2 ipv4 2 udp 17 66 src=10.0.0.58 dst=186.19.153.217 sport=11097 dport=40775 src=186.19.153.217 dst=192.168.150.99 sport=40775 dport=11097 [ASSURED] mark=2 zone=0 use=2 ipv4 2 tcp 6 431986 ESTABLISHED src=10.0.0.58 dst=201.233.21.138 sport=3747 dport=46885 src=201.233.21.138 dst=192.168.150.99 sport=46885 dport=3747 [ASSURED] mark=3 zone=0 use=2 ipv4 2 tcp 6 14 TIME_WAIT src=10.0.0.58 dst=65.55.175.183 sport=2942 dport=80 src=65.55.175.183 dst=192.168.150.99 sport=80 dport=2942 [ASSURED] mark=3 zone=0 use=2 ipv4 2 tcp 6 169043 ESTABLISHED src=72.246.64.16 dst=192.168.8.7 sport=80 dport=1357 [UNREPLIED] src=192.168.8.7 dst=72.246.64.16 sport=1357 dport=80 mark=0 zone=0 use=2 ipv4 2 tcp 6 414666 ESTABLISHED src=10.0.0.58 dst=173.45.106.130 sport=1375 dport=80 [UNREPLIED] src=173.45.106.130 dst=192.168.150.99 sport=80 dport=1375 mark=0 zone=0 use=2 ipv4 2 tcp 6 70758 ESTABLISHED src=174.132.198.202 dst=192.168.127.102 sport=80 dport=2004 [UNREPLIED] src=192.168.127.102 dst=174.132.198.202 sport=2004 dport=80 mark=0 zone=0 use=2 ipv4 2 tcp 6 67173 ESTABLISHED src=201.211.78.254 dst=192.168.29.100 sport=61863 dport=50161 [UNREPLIED] src=192.168.29.100 dst=201.211.78.254 sport=50161 dport=61863 mark=0 zone=0 use=2 ipv4 2 tcp 6 426855 ESTABLISHED src=10.0.0.58 dst=66.94.241.1 sport=1900 dport=80 [UNREPLIED] src=66.94.241.1 dst=192.168.150.99 sport=80 dport=1900 mark=0 zone=0 use=2 ipv4 2 udp 17 27 src=192.168.150.99 dst=82.207.67.6 sport=23174 dport=53 src=82.207.67.6 dst=192.168.150.99 sport=53 dport=23174 mark=3 zone=0 use=2 ipv4 2 tcp 6 64614 ESTABLISHED src=10.0.0.58 dst=208.99.200.2 sport=19642 dport=21512 src=208.99.200.2 dst=192.168.150.99 sport=21512 dport=19642 [ASSURED] mark=2 zone=0 use=2 ipv4 2 tcp 6 293816 ESTABLISHED src=10.0.0.58 dst=69.171.242.13 sport=3315 dport=80 [UNREPLIED] src=69.171.242.13 dst=192.168.150.99 sport=80 dport=3315 mark=0 zone=0 use=2 ipv4 2 tcp 6 66814 ESTABLISHED src=10.0.0.58 dst=99.235.6.177 sport=20308 dport=23856 src=99.235.6.177 dst=192.168.150.99 sport=23856 dport=20308 [ASSURED] mark=2 zone=0 use=2 ipv4 2 tcp 6 75 TIME_WAIT src=10.0.0.58 dst=188.165.217.211 sport=4643 dport=80 src=188.165.217.211 dst=192.168.150.99 sport=80 dport=4643 [ASSURED] mark=3 zone=0 use=2 ipv4 2 udp 17 16 src=10.0.0.58 dst=190.175.146.171 sport=9877 dport=10319 [UNREPLIED] src=190.175.146.171 dst=192.168.150.99 sport=10319 dport=9877 mark=0 zone=0 use=2 ipv4 2 tcp 6 110 SYN_SENT src=10.0.0.58 dst=83.22.178.172 sport=3022 dport=6881 [UNREPLIED] src=83.22.178.172 dst=192.168.150.99 sport=6881 dport=3022 mark=3 zone=0 use=2 ipv4 2 tcp 6 163704 ESTABLISHED src=174.36.96.28 dst=192.168.127.102 sport=80 dport=1356 [UNREPLIED] src=192.168.127.102 dst=174.36.96.28 sport=1356 dport=80 mark=0 zone=0 use=2 ipv4 2 tcp 6 431960 ESTABLISHED src=10.0.0.58 dst=69.171.242.11 sport=1147 dport=80 src=69.171.242.11 dst=192.168.150.99 sport=80 dport=1147 [ASSURED] mark=2 zone=0 use=2 ipv4 2 tcp 6 22 TIME_WAIT src=10.0.0.58 dst=188.165.217.211 sport=4450 dport=80 src=188.165.217.211 dst=192.168.150.99 sport=80 dport=4450 [ASSURED] mark=3 zone=0 use=2 ipv4 2 udp 17 147 src=10.0.0.58 dst=184.147.52.190 sport=20708 dport=44867 src=184.147.52.190 dst=192.168.150.99 sport=44867 dport=20708 [ASSURED] mark=2 zone=0 use=2 ipv4 2 tcp 6 63261 ESTABLISHED src=68.180.158.155 dst=192.168.29.11 sport=80 dport=60303 [UNREPLIED] src=192.168.29.11 dst=68.180.158.155 sport=60303 dport=80 mark=0 zone=0 use=2 ipv4 2 tcp 6 294873 ESTABLISHED src=184.84.247.35 dst=192.168.8.3 sport=80 dport=2947 [UNREPLIED] src=192.168.8.3 dst=184.84.247.35 sport=2947 dport=80 mark=0 zone=0 use=2 ipv4 2 tcp 6 229955 ESTABLISHED src=10.0.0.58 dst=192.168.118.99 sport=33296 dport=53 [UNREPLIED] src=192.168.118.99 dst=192.168.150.99 sport=53 dport=33296 mark=0 zone=0 use=2 ipv4 2 tcp 6 105 TIME_WAIT src=10.0.0.58 dst=72.246.64.41 sport=4710 dport=80 src=72.246.64.41 dst=192.168.150.99 sport=80 dport=4710 [ASSURED] mark=3 zone=0 use=2 ipv4 2 tcp 6 250308 ESTABLISHED src=209.87.178.183 dst=192.168.0.2 sport=443 dport=2067 [UNREPLIED] src=192.168.0.2 dst=209.87.178.183 sport=2067 dport=443 mark=0 zone=0 use=2 ipv4 2 tcp 6 431969 ESTABLISHED src=10.0.0.58 dst=72.246.64.107 sport=60274 dport=80 src=72.246.64.107 dst=192.168.150.99 sport=80 dport=60274 [ASSURED] mark=3 zone=0 use=2 ipv4 2 tcp 6 204556 ESTABLISHED src=74.125.45.83 dst=192.168.29.106 sport=443 dport=1228 [UNREPLIED] src=192.168.29.106 dst=74.125.45.83 sport=1228 dport=443 mark=0 zone=0 use=2 ipv4 2 udp 17 179 src=10.0.0.58 dst=190.26.165.41 sport=48760 dport=40523 src=190.26.165.41 dst=192.168.150.99 sport=40523 dport=48760 [ASSURED] mark=3 zone=0 use=2 ipv4 2 tcp 6 32 TIME_WAIT src=10.0.0.58 dst=94.198.224.153 sport=2381 dport=80 src=94.198.224.153 dst=192.168.150.99 sport=80 dport=2381 [ASSURED] mark=3 zone=0 use=2 ipv4 2 udp 17 5 src=10.0.0.58 dst=190.205.125.71 sport=18317 dport=9294 [UNREPLIED] src=190.205.125.71 dst=192.168.150.99 sport=9294 dport=18317 mark=0 zone=0 use=2 ipv4 2 tcp 6 157525 ESTABLISHED src=10.0.0.58 dst=190.73.21.25 sport=47544 dport=51077 src=190.73.21.25 dst=192.168.150.99 sport=51077 dport=47544 [ASSURED] mark=2 zone=0 use=2 ipv4 2 udp 17 173 src=10.0.0.58 dst=186.22.26.47 sport=11512 dport=27419 src=186.22.26.47 dst=192.168.150.99 sport=27419 dport=11512 [ASSURED] mark=3 zone=0 use=2 ipv4 2 tcp 6 246917 ESTABLISHED src=10.0.0.58 dst=74.125.229.114 sport=3571 dport=80 [UNREPLIED] src=74.125.229.114 dst=192.168.150.99 sport=80 dport=3571 mark=0 zone=0 use=2 ipv4 2 udp 17 4 src=10.0.0.58 dst=92.21.200.210 sport=49644 dport=21877 [UNREPLIED] src=92.21.200.210 dst=192.168.150.99 sport=21877 dport=49644 mark=0 zone=0 use=2 ipv4 2 tcp 6 407980 ESTABLISHED src=10.0.0.58 dst=66.220.151.77 sport=2305 dport=80 [UNREPLIED] src=66.220.151.77 dst=192.168.150.99 sport=80 dport=2305 mark=0 zone=0 use=2 ipv4 2 tcp 6 210848 ESTABLISHED src=10.0.0.58 dst=197.1.104.62 sport=25759 dport=6881 [UNREPLIED] src=197.1.104.62 dst=192.168.150.99 sport=6881 dport=25759 mark=0 zone=0 use=2 ipv4 2 tcp 6 157371 ESTABLISHED src=74.125.229.37 dst=192.168.127.102 sport=80 dport=2380 [UNREPLIED] src=192.168.127.102 dst=74.125.229.37 sport=2380 dport=80 mark=0 zone=0 use=2 ipv4 2 tcp 6 280206 ESTABLISHED src=10.0.0.58 dst=98.137.51.254 sport=2299 dport=80 [UNREPLIED] src=98.137.51.254 dst=192.168.150.99 sport=80 dport=2299 mark=0 zone=0 use=2 ipv4 2 tcp 6 141642 ESTABLISHED src=184.84.247.34 dst=192.168.127.100 sport=80 dport=62006 [UNREPLIED] src=192.168.127.100 dst=184.84.247.34 sport=62006 dport=80 mark=0 zone=0 use=2 ipv4 2 tcp 6 76630 ESTABLISHED src=66.220.156.25 dst=192.168.127.100 sport=80 dport=62464 [UNREPLIED] src=192.168.127.100 dst=66.220.156.25 sport=62464 dport=80 mark=0 zone=0 use=2 ipv4 2 tcp 6 82 TIME_WAIT src=10.0.0.58 dst=213.174.158.80 sport=2203 dport=80 src=213.174.158.80 dst=192.168.150.99 sport=80 dport=2203 [ASSURED] mark=3 zone=0 use=2 ipv4 2 tcp 6 431791 ESTABLISHED src=190.175.194.110 dst=192.168.110.197 sport=9869 dport=59365 [UNREPLIED] src=192.168.110.197 dst=190.175.194.110 sport=59365 dport=9869 mark=0 zone=0 use=2 ipv4 2 tcp 6 115 SYN_SENT src=10.0.0.58 dst=189.170.142.61 sport=50189 dport=18984 [UNREPLIED] src=189.170.142.61 dst=10.0.0.58 sport=18984 dport=50189 mark=0 zone=0 use=2 ipv4 2 tcp 6 393226 ESTABLISHED src=23.2.17.98 dst=192.168.111.164 sport=80 dport=1259 [UNREPLIED] src=192.168.111.164 dst=23.2.17.98 sport=1259 dport=80 mark=0 zone=0 use=2 ipv4 2 tcp 6 151686 ESTABLISHED src=10.0.0.58 dst=187.45.196.30 sport=3413 dport=1433 [UNREPLIED] src=187.45.196.30 dst=192.168.150.99 sport=1433 dport=3413 mark=0 zone=0 use=2 ipv4 2 tcp 6 413476 ESTABLISHED src=10.0.0.58 dst=72.246.31.74 sport=1331 dport=80 [UNREPLIED] src=72.246.31.74 dst=192.168.150.99 sport=80 dport=1331 mark=0 zone=0 use=2 ipv4 2 tcp 6 410054 ESTABLISHED src=10.0.0.58 dst=200.45.17.240 sport=1192 dport=443 [UNREPLIED] src=200.45.17.240 dst=192.168.150.99 sport=443 dport=1192 mark=0 zone=0 use=2 ipv4 2 tcp 6 95 TIME_WAIT src=10.0.0.58 dst=72.246.64.48 sport=65114 dport=80 src=72.246.64.48 dst=192.168.150.99 sport=80 dport=65114 [ASSURED] mark=3 zone=0 use=2 ipv4 2 udp 17 159 src=10.0.0.58 dst=69.124.7.15 sport=18317 dport=49965 src=69.124.7.15 dst=192.168.150.99 sport=49965 dport=18317 [ASSURED] mark=3 zone=0 use=2 ipv4 2 udp 17 9 src=10.0.0.58 dst=201.34.212.78 sport=15114 dport=13480 src=201.34.212.78 dst=192.168.150.99 sport=13480 dport=15114 mark=3 zone=0 use=2