Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- 0 comment=accept established,related,untracked chain=input action=accept connection-state=established,related,untracked
- 1 comment=allow IPsec NAT chain=input action=accept protocol=udp dst-port=4500
- 2 comment=allow IKE chain=input action=accept protocol=udp dst-port=500
- 3 comment=allow l2tp chain=input action=accept protocol=udp dst-port=1701
- 4 comment=allow pptp chain=input action=accept protocol=tcp dst-port=1723
- 5 comment=allow sstp chain=input action=accept protocol=tcp dst-port=443
- 6 comment=drop invalid chain=input action=drop connection-state=invalid
- 7 comment=accept ICMP chain=input action=accept protocol=icmp
- 8 comment=accept to local loopback (for CAPsMAN) chain=input action=accept dst-address=127.0.0.1
- 9 comment=drop all not coming from LAN chain=input action=drop in-interface-list=!LAN log=no log-prefix=""
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
