tamanmerah Feb 3rd, 2019 (edited) 118 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. # secure iptables.rules
  2. *filter
  3. :INPUT DROP [0:0]
  4. :FORWARD DROP [0:0]
  5. :OUTPUT ACCEPT [0:0]
  6. :LOGGING - [0:0]
  7. -A INPUT -s -i wlan0 -j DROP
  8. -A INPUT -s -i wlan0 -j DROP
  9. -A INPUT -s -j ACCEPT
  10. -A INPUT -i wlan0 -p tcp -m tcp --sport 31337 --dport 31337 -j DROP
  11. -A INPUT -s -i wlan0 -j DROP
  12. -A INPUT -p tcp -m multiport --dports 21,22,23,25,80,443,31337,7000,7001,7002,7003,7004,7016 -j DROP
  13. -A INPUT -p tcp -m tcp --dport 80 -m limit --limit 100/min --limit-burst 200 -j ACCEPT
  14. -A INPUT -m conntrack --ctstate INVALID -j DROP
  15. -A INPUT -i lo -j ACCEPT
  16. -A INPUT -p tcp -m state --state ESTABLISHED -j ACCEPT
  17. -A INPUT -p udp -m state --state ESTABLISHED -j ACCEPT
  18. -A INPUT -p icmp -m state --state ESTABLISHED -j ACCEPT
  20. -A FORWARD -o wlan0 -p tcp -m tcp --sport 31337 --dport 31337 -j DROP
  21. -A FORWARD -s -i wlan0 -j DROP
  23. -A OUTPUT -o wlan0 -p tcp -m tcp --sport 31337 --dport 31337 -j DROP
  24. -A OUTPUT -s -o wlan0 -j DROP
  25. -A LOGGING -m limit --limit 1/sec -j LOG --log-prefix "IPTables packet DROP: " --log-level 7
  26. -A LOGGING -j DROP
  27. COMMIT
  28. # Completed on Mon Feb  5 02:47:42 2019
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand