Chain INPUT (policy ACCEPT)target prot opt source destinatio

1. Chain INPUT (policy ACCEPT)
2. target prot opt source destination
3. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
4. input_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom input rule chain */
5. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED /* !fw3 */
6. syn_flood tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x02 /* !fw3 */
7. zone_lan_input all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
8. zone_wan_input all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
9. DROP all -- 192.168.1.225 0.0.0.0/0
10. DROP all -- 192.168.1.225 0.0.0.0/0
11.  
12. Chain FORWARD (policy DROP)
13. target prot opt source destination
14. forwarding_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom forwarding rule chain */
15. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED /* !fw3 */
16. zone_lan_forward all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
17. zone_wan_forward all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
18. reject all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
19. DROP all -- 192.168.1.225 0.0.0.0/0
20.  
21. Chain OUTPUT (policy ACCEPT)
22. target prot opt source destination
23. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
24. output_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom output rule chain */
25. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED /* !fw3 */
26. zone_lan_output all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
27. zone_wan_output all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
28.  
29. Chain forwarding_lan_rule (1 references)
30. target prot opt source destination
31.  
32. Chain forwarding_rule (1 references)
33. target prot opt source destination
34.  
35. Chain forwarding_wan_rule (1 references)
36. target prot opt source destination
37.  
38. Chain input_lan_rule (1 references)
39. target prot opt source destination
40.  
41. Chain input_rule (1 references)
42. target prot opt source destination
43.  
44. Chain input_wan_rule (1 references)
45. target prot opt source destination
46.  
47. Chain output_lan_rule (1 references)
48. target prot opt source destination
49.  
50. Chain output_rule (1 references)
51. target prot opt source destination
52.  
53. Chain output_wan_rule (1 references)
54. target prot opt source destination
55.  
56. Chain reject (3 references)
57. target prot opt source destination
58. REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */ reject-with tcp-reset
59. REJECT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */ reject-with icmp-port-unreachable
60.  
61. Chain syn_flood (1 references)
62. target prot opt source destination
63. RETURN tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x02 limit: avg 25/sec burst 50 /* !fw3 */
64. DROP all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
65.  
66. Chain zone_lan_dest_ACCEPT (4 references)
67. target prot opt source destination
68. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
69.  
70. Chain zone_lan_forward (1 references)
71. target prot opt source destination
72. forwarding_lan_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom lan forwarding rule chain */
73. zone_wan_dest_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Zone lan to wan forwarding policy */
74. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT /* !fw3: Accept port forwards */
75. zone_lan_dest_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
76.  
77. Chain zone_lan_input (1 references)
78. target prot opt source destination
79. input_lan_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom lan input rule chain */
80. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT /* !fw3: Accept port redirections */
81. zone_lan_src_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
82.  
83. Chain zone_lan_output (1 references)
84. target prot opt source destination
85. output_lan_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom lan output rule chain */
86. zone_lan_dest_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
87.  
88. Chain zone_lan_src_ACCEPT (1 references)
89. target prot opt source destination
90. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate NEW,UNTRACKED /* !fw3 */
91.  
92. Chain zone_wan_dest_ACCEPT (2 references)
93. target prot opt source destination
94. DROP all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID /* !fw3: Prevent NAT leakage */
95. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
96.  
97. Chain zone_wan_dest_REJECT (1 references)
98. target prot opt source destination
99. reject all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
100.  
101. Chain zone_wan_forward (1 references)
102. target prot opt source destination
103. forwarding_wan_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom wan forwarding rule chain */
104. zone_lan_dest_ACCEPT esp -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Allow-IPSec-ESP */
105. zone_lan_dest_ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:500 /* !fw3: Allow-ISAKMP */
106. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT /* !fw3: Accept port forwards */
107. zone_wan_dest_REJECT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
108.  
109. Chain zone_wan_input (1 references)
110. target prot opt source destination
111. input_wan_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom wan input rule chain */
112. ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:68 /* !fw3: Allow-DHCP-Renew */
113. ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 /* !fw3: Allow-Ping */
114. ACCEPT 2 -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Allow-IGMP */
115. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT /* !fw3: Accept port redirections */
116. zone_wan_src_REJECT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
117.  
118. Chain zone_wan_output (1 references)
119. target prot opt source destination
120. output_wan_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom wan output rule chain */
121. zone_wan_dest_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
122.  
123. Chain zone_wan_src_REJECT (1 references)
124. target prot opt source destination
125. reject all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */