API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 31st, 2012
72
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 8.81 KB | None | 0 0
raw download clone embed print report
  1. Chain PREROUTING (policy ACCEPT 2677K packets, 1520M bytes)
  2. pkts bytes target prot opt in out source destination
  3. 101K 19M ACCEPT all -- lo any anywhere anywhere
  4. 2685K 1522M ROUTING all -- any any anywhere anywhere
  5.  
  6. Chain INPUT (policy ACCEPT 170K packets, 15M bytes)
  7. pkts bytes target prot opt in out source destination
  8. 101K 19M ACCEPT all -- lo any anywhere anywhere
  9.  
  10. Chain FORWARD (policy ACCEPT 2347K packets, 1489M bytes)
  11. pkts bytes target prot opt in out source destination
  12. 211K 10M TCPMSS tcp -- any any anywhere anywhere tcp flags:SYN,RST/SYN TCPMSS set 1360
  13. 184K 9210K ZONETRAFFIC all -- any any anywhere anywhere state NEW mark match 0x0/0xfff80000
  14. 2160K 1477M MARK all -- any any anywhere anywhere state RELATED,ESTABLISHED MARK and 0xfffbffff
  15.  
  16. Chain OUTPUT (policy ACCEPT 97325 packets, 8075K bytes)
  17. pkts bytes target prot opt in out source destination
  18. 101K 19M ACCEPT all -- any lo anywhere anywhere
  19. 97686 8103K LOCALROUTING all -- any any anywhere anywhere
  20.  
  21. Chain POSTROUTING (policy ACCEPT 2413K packets, 1509M bytes)
  22. pkts bytes target prot opt in out source destination
  23. 2414K 1510M QOS all -- any any anywhere anywhere
  24.  
  25. Chain CHECKIIF (2 references)
  26. pkts bytes target prot opt in out source destination
  27. 0 0 MARK all -- !eth0 any anywhere anywhere connmark match 0x800/0x3f800 MARK and 0xfffff807
  28. 0 0 MARK all -- !eth1 any anywhere anywhere connmark match 0x1000/0x3f800 MARK and 0xfffff807
  29. 0 0 MARK all -- !eth1 any anywhere anywhere connmark match 0x1000/0x3f800 MARK or 0x7e0
  30. 1388K 1402M MARK all -- !br0 any anywhere anywhere connmark match 0x1800/0x3f800 MARK and 0xfffff807
  31.  
  32. Chain INCOMINGMARK (1 references)
  33. pkts bytes target prot opt in out source destination
  34. 506K 39M POLICYROUTING all -- any any anywhere anywhere
  35. 506K 39M CONNMARK all -- any any anywhere anywhere CONNMARK restore
  36.  
  37. Chain LOCALMARK (1 references)
  38. pkts bytes target prot opt in out source destination
  39. 788 81224 LOCALPOLICYROUTING all -- any any anywhere anywhere
  40. 788 81224 CONNMARK all -- any any anywhere anywhere CONNMARK restore
  41.  
  42. Chain LOCALPOLICYROUTING (1 references)
  43. pkts bytes target prot opt in out source destination
  44. 13 911 CONNMARK udp -- any any anywhere ns.astelecom.ru udp dpt:domain CONNMARK xset 0x7e0/0x7f8
  45. 13 911 RETURN udp -- any any anywhere ns.astelecom.ru udp dpt:domain connmark match !0x0/0x7f8
  46. 0 0 CONNMARK tcp -- any any anywhere ns.astelecom.ru tcp dpt:domain CONNMARK xset 0x7e0/0x7f8
  47. 0 0 RETURN tcp -- any any anywhere ns.astelecom.ru tcp dpt:domain connmark match !0x0/0x7f8
  48. 63 4285 CONNMARK udp -- any any anywhere ns1.astelecom.ru udp dpt:domain CONNMARK xset 0x7e0/0x7f8
  49. 63 4285 RETURN udp -- any any anywhere ns1.astelecom.ru udp dpt:domain connmark match !0x0/0x7f8
  50. 0 0 CONNMARK tcp -- any any anywhere ns1.astelecom.ru tcp dpt:domain CONNMARK xset 0x7e0/0x7f8
  51. 0 0 RETURN tcp -- any any anywhere ns1.astelecom.ru tcp dpt:domain connmark match !0x0/0x7f8
  52.  
  53. Chain LOCALROUTING (1 references)
  54. pkts bytes target prot opt in out source destination
  55. 0 0 RETURN all -- lo any anywhere anywhere
  56. 0 0 RETURN all -- any lo anywhere anywhere
  57. 96523 7983K CONNMARK all -- any any anywhere anywhere state INVALID,RELATED,ESTABLISHED,UNTRACKED connmark match !0x0 CONNMARK restore
  58. 96523 7983K CHECKIIF all -- any any anywhere anywhere state INVALID,RELATED,ESTABLISHED,UNTRACKED connmark match !0x0
  59. 788 81224 MARKIIF all -- any any anywhere anywhere state NEW
  60. 788 81224 LOCALMARK all -- any any anywhere anywhere state NEW
  61.  
  62. Chain MARKIIF (2 references)
  63. pkts bytes target prot opt in out source destination
  64. 0 0 CONNMARK all -- eth0 any anywhere anywhere CONNMARK xset 0x800/0x3f800
  65. 198K 16M CONNMARK all -- eth1 any anywhere anywhere CONNMARK xset 0x1000/0x3f800
  66. 305K 23M CONNMARK all -- br0 any anywhere anywhere CONNMARK xset 0x1800/0x3f800
  67.  
  68. Chain POLICYROUTING (1 references)
  69. pkts bytes target prot opt in out source destination
  70. 1940 121K CONNMARK udp -- any any anywhere ns.astelecom.ru udp dpt:domain CONNMARK xset 0x7e0/0x7f8
  71. 1940 121K RETURN udp -- any any anywhere ns.astelecom.ru udp dpt:domain connmark match !0x0/0x7f8
  72. 10 508 CONNMARK tcp -- any any anywhere ns.astelecom.ru tcp dpt:domain CONNMARK xset 0x7e0/0x7f8
  73. 10 508 RETURN tcp -- any any anywhere ns.astelecom.ru tcp dpt:domain connmark match !0x0/0x7f8
  74. 578 35672 CONNMARK udp -- any any anywhere ns1.astelecom.ru udp dpt:domain CONNMARK xset 0x7e0/0x7f8
  75. 578 35672 RETURN udp -- any any anywhere ns1.astelecom.ru udp dpt:domain connmark match !0x0/0x7f8
  76. 0 0 CONNMARK tcp -- any any anywhere ns1.astelecom.ru tcp dpt:domain CONNMARK xset 0x7e0/0x7f8
  77. 0 0 RETURN tcp -- any any anywhere ns1.astelecom.ru tcp dpt:domain connmark match !0x0/0x7f8
  78.  
  79. Chain QOS (1 references)
  80. pkts bytes target prot opt in out source destination
  81. 1405K 1406M QOS_BR0 all -- any br0 anywhere anywhere
  82.  
  83. Chain QOS_BR0 (1 references)
  84. pkts bytes target prot opt in out source destination
  85. 196K 10M CLASSIFY tcp -- any any anywhere anywhere tcp flags:SYN,RST,ACK/ACK length 0:128 CLASSIFY set 2:2
  86. 1405K 1406M CLASSIFY all -- any any anywhere anywhere CLASSIFY set 2:4
  87. 1405K 1406M RETURN all -- any any anywhere anywhere
  88.  
  89. Chain ROUTING (1 references)
  90. pkts bytes target prot opt in out source destination
  91. 0 0 RETURN all -- lo any anywhere anywhere
  92. 0 0 RETURN all -- any lo anywhere anywhere
  93. 2163K 1477M CONNMARK all -- any any anywhere anywhere state INVALID,RELATED,ESTABLISHED,UNTRACKED connmark match !0x0 CONNMARK restore
  94. 2163K 1477M CHECKIIF all -- any any anywhere anywhere state INVALID,RELATED,ESTABLISHED,UNTRACKED connmark match !0x0
  95. 506K 39M MARKIIF all -- any any anywhere anywhere state NEW
  96. 506K 39M INCOMINGMARK all -- any any anywhere anywhere state NEW
  97.  
  98. Chain VPNFWBRIDGE (1 references)
  99. pkts bytes target prot opt in out source destination
  100.  
  101. Chain VPNFWDST (0 references)
  102. pkts bytes target prot opt in out source destination
  103.  
  104. Chain ZONEFW (1 references)
  105. pkts bytes target prot opt in out source destination
  106. 6867 304K ACCEPT all -- br0 br0 anywhere anywhere
  107. 0 0 ACCEPT all -- br0 br2 anywhere anywhere
  108. 0 0 ACCEPT all -- br0 br1 anywhere anywhere
  109. 0 0 ACCEPT all -- br2 br2 anywhere anywhere
  110. 0 0 ACCEPT all -- br1 br1 anywhere anywhere
  111.  
  112. Chain ZONETRAFFIC (1 references)
  113. pkts bytes target prot opt in out source destination
  114. 184K 9210K VPNFWBRIDGE all -- any any anywhere anywhere
  115. 6867 304K ZONEFW all -- br0 br0 anywhere anywhere
  116. 0 0 RETURN all -- br0 br0 anywhere anywhere
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!