iptables 6/5/11

1. Chain INPUT (policy DROP)
2. target prot opt source destination
3. ACCEPT tcp -- 192.168.1.1 anywhere tcp flags:!FIN,SYN,RST,ACK/SYN
4. ACCEPT udp -- 192.168.1.1 anywhere
5. ACCEPT all -- anywhere anywhere
6. ACCEPT icmp -- anywhere anywhere limit: avg 10/sec burst 5
7. DROP all -- BASE-ADDRESS.MCAST.NET/8 anywhere
8. DROP all -- anywhere BASE-ADDRESS.MCAST.NET/8
9. DROP all -- 255.255.255.255 anywhere
10. DROP all -- anywhere 0.0.0.0
11. DROP all -- anywhere anywhere state INVALID
12. LSI all -f anywhere anywhere limit: avg 10/min burst 5
13. INBOUND all -- anywhere anywhere
14. LOG_FILTER all -- anywhere anywhere
15. LOG all -- anywhere anywhere LOG level info prefix `Unknown Input'
16. ufw-before-logging-input all -- anywhere anywhere
17. ufw-before-input all -- anywhere anywhere
18. ufw-after-input all -- anywhere anywhere
19. ufw-after-logging-input all -- anywhere anywhere
20. ufw-reject-input all -- anywhere anywhere
21. ufw-track-input all -- anywhere anywhere
22.  
23. Chain FORWARD (policy DROP)
24. target prot opt source destination
25. ACCEPT icmp -- anywhere anywhere limit: avg 10/sec burst 5
26. LOG_FILTER all -- anywhere anywhere
27. LOG all -- anywhere anywhere LOG level info prefix `Unknown Forward'
28. ufw-before-logging-forward all -- anywhere anywhere
29. ufw-before-forward all -- anywhere anywhere
30. ufw-after-forward all -- anywhere anywhere
31. ufw-after-logging-forward all -- anywhere anywhere
32. ufw-reject-forward all -- anywhere anywhere
33.  
34. Chain OUTPUT (policy DROP)
35. target prot opt source destination
36. ACCEPT tcp -- 192.168.1.125 192.168.1.1 tcp dpt:domain
37. ACCEPT udp -- 192.168.1.125 192.168.1.1 udp dpt:domain
38. ACCEPT all -- anywhere anywhere
39. DROP all -- BASE-ADDRESS.MCAST.NET/8 anywhere
40. DROP all -- anywhere BASE-ADDRESS.MCAST.NET/8
41. DROP all -- 255.255.255.255 anywhere
42. DROP all -- anywhere 0.0.0.0
43. DROP all -- anywhere anywhere state INVALID
44. OUTBOUND all -- anywhere anywhere
45. LOG_FILTER all -- anywhere anywhere
46. LOG all -- anywhere anywhere LOG level info prefix `Unknown Output'
47. ufw-before-logging-output all -- anywhere anywhere
48. ufw-before-output all -- anywhere anywhere
49. ufw-after-output all -- anywhere anywhere
50. ufw-after-logging-output all -- anywhere anywhere
51. ufw-reject-output all -- anywhere anywhere
52. ufw-track-output all -- anywhere anywhere
53.  
54. Chain INBOUND (1 references)
55. target prot opt source destination
56. ACCEPT tcp -- anywhere anywhere state RELATED,ESTABLISHED
57. ACCEPT udp -- anywhere anywhere state RELATED,ESTABLISHED
58. ACCEPT tcp -- 192.168.0.25 anywhere tcp dpt:9000
59. ACCEPT udp -- 192.168.0.25 anywhere udp dpt:9000
60. LSI all -- anywhere anywhere
61.  
62. Chain LOG_FILTER (5 references)
63. target prot opt source destination
64.  
65. Chain LSI (2 references)
66. target prot opt source destination
67. LOG_FILTER all -- anywhere anywhere
68. LOG tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
69. DROP tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/SYN
70. LOG tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/RST limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
71. DROP tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/RST
72. LOG icmp -- anywhere anywhere icmp echo-request limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
73. DROP icmp -- anywhere anywhere icmp echo-request
74. LOG all -- anywhere anywhere limit: avg 5/sec burst 5 LOG level info prefix `Inbound '
75. DROP all -- anywhere anywhere
76.  
77. Chain LSO (0 references)
78. target prot opt source destination
79. LOG_FILTER all -- anywhere anywhere
80. LOG all -- anywhere anywhere limit: avg 5/sec burst 5 LOG level info prefix `Outbound '
81. REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
82.  
83. Chain OUTBOUND (1 references)
84. target prot opt source destination
85. ACCEPT icmp -- anywhere anywhere
86. ACCEPT tcp -- anywhere anywhere state RELATED,ESTABLISHED
87. ACCEPT udp -- anywhere anywhere state RELATED,ESTABLISHED
88. ACCEPT all -- anywhere anywhere
89.  
90. Chain ufw-after-forward (1 references)
91. target prot opt source destination
92.  
93. Chain ufw-after-input (1 references)
94. target prot opt source destination
95. ufw-skip-to-policy-input udp -- anywhere anywhere udp dpt:netbios-ns
96. ufw-skip-to-policy-input udp -- anywhere anywhere udp dpt:netbios-dgm
97. ufw-skip-to-policy-input tcp -- anywhere anywhere tcp dpt:netbios-ssn
98. ufw-skip-to-policy-input tcp -- anywhere anywhere tcp dpt:microsoft-ds
99. ufw-skip-to-policy-input udp -- anywhere anywhere udp dpt:bootps
100. ufw-skip-to-policy-input udp -- anywhere anywhere udp dpt:bootpc
101. ufw-skip-to-policy-input all -- anywhere anywhere ADDRTYPE match dst-type BROADCAST
102.  
103. Chain ufw-after-logging-forward (1 references)
104. target prot opt source destination
105. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix `[UFW BLOCK] '
106.  
107. Chain ufw-after-logging-input (1 references)
108. target prot opt source destination
109. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix `[UFW BLOCK] '
110.  
111. Chain ufw-after-logging-output (1 references)
112. target prot opt source destination
113. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix `[UFW BLOCK] '
114.  
115. Chain ufw-after-output (1 references)
116. target prot opt source destination
117.  
118. Chain ufw-before-forward (1 references)
119. target prot opt source destination
120. ufw-user-forward all -- anywhere anywhere
121.  
122. Chain ufw-before-input (1 references)
123. target prot opt source destination
124. ACCEPT all -- anywhere anywhere
125. ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
126. ufw-logging-deny all -- anywhere anywhere state INVALID
127. DROP all -- anywhere anywhere state INVALID
128. ACCEPT icmp -- anywhere anywhere icmp destination-unreachable
129. ACCEPT icmp -- anywhere anywhere icmp source-quench
130. ACCEPT icmp -- anywhere anywhere icmp time-exceeded
131. ACCEPT icmp -- anywhere anywhere icmp parameter-problem
132. ACCEPT icmp -- anywhere anywhere icmp echo-request
133. ACCEPT udp -- anywhere anywhere udp spt:bootps dpt:bootpc
134. ufw-not-local all -- anywhere anywhere
135. ACCEPT udp -- anywhere 224.0.0.251 udp dpt:mdns
136. ufw-user-input all -- anywhere anywhere
137.  
138. Chain ufw-before-logging-forward (1 references)
139. target prot opt source destination
140.  
141. Chain ufw-before-logging-input (1 references)
142. target prot opt source destination
143.  
144. Chain ufw-before-logging-output (1 references)
145. target prot opt source destination
146.  
147. Chain ufw-before-output (1 references)
148. target prot opt source destination
149. ACCEPT all -- anywhere anywhere
150. ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
151. ufw-user-output all -- anywhere anywhere
152.  
153. Chain ufw-logging-allow (0 references)
154. target prot opt source destination
155. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix `[UFW ALLOW] '
156.  
157. Chain ufw-logging-deny (2 references)
158. target prot opt source destination
159. RETURN all -- anywhere anywhere state INVALID limit: avg 3/min burst 10
160. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix `[UFW BLOCK] '
161.  
162. Chain ufw-not-local (1 references)
163. target prot opt source destination
164. RETURN all -- anywhere anywhere ADDRTYPE match dst-type LOCAL
165. RETURN all -- anywhere anywhere ADDRTYPE match dst-type MULTICAST
166. RETURN all -- anywhere anywhere ADDRTYPE match dst-type BROADCAST
167. ufw-logging-deny all -- anywhere anywhere limit: avg 3/min burst 10
168. DROP all -- anywhere anywhere
169.  
170. Chain ufw-reject-forward (1 references)
171. target prot opt source destination
172.  
173. Chain ufw-reject-input (1 references)
174. target prot opt source destination
175.  
176. Chain ufw-reject-output (1 references)
177. target prot opt source destination
178.  
179. Chain ufw-skip-to-policy-forward (0 references)
180. target prot opt source destination
181. DROP all -- anywhere anywhere
182.  
183. Chain ufw-skip-to-policy-input (7 references)
184. target prot opt source destination
185. DROP all -- anywhere anywhere
186.  
187. Chain ufw-skip-to-policy-output (0 references)
188. target prot opt source destination
189. DROP all -- anywhere anywhere
190.  
191. Chain ufw-track-input (1 references)
192. target prot opt source destination
193.  
194. Chain ufw-track-output (1 references)
195. target prot opt source destination
196.  
197. Chain ufw-user-forward (1 references)
198. target prot opt source destination
199.  
200. Chain ufw-user-input (1 references)
201. target prot opt source destination
202. ACCEPT tcp -- anywhere anywhere tcp dpt:9000 /* 'dapp_OpenSim%20Listener' */
203. ACCEPT udp -- anywhere anywhere multiport dports 9000,9001,9002,9003 /* 'dapp_OpenSim%20Regions' */
204.  
205. Chain ufw-user-limit (0 references)
206. target prot opt source destination
207. LOG all -- anywhere anywhere limit: avg 3/min burst 5 LOG level warning prefix `[UFW LIMIT BLOCK] '
208. REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
209.  
210. Chain ufw-user-limit-accept (0 references)
211. target prot opt source destination
212. ACCEPT all -- anywhere anywhere
213.  
214. Chain ufw-user-logging-forward (0 references)
215. target prot opt source destination
216.  
217. Chain ufw-user-logging-input (0 references)
218. target prot opt source destination
219.  
220. Chain ufw-user-logging-output (0 references)
221. target prot opt source destination
222.  
223. Chain ufw-user-output (1 references)
224. target prot opt source destination