API tools faq
paste
Guest User

Untitled

a guest
Jul 22nd, 2018
91
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.41 KB | None | 0 0
raw download clone embed print report
  1. [root@router ~]# cat /etc/sysconfig/iptables
  2. # Generated by iptables-save v1.3.5 on Tue Jan 12 12:45:36 2010
  3. *filter
  4. :FORWARD DROP [0:0]
  5. :INPUT DROP [0:0]
  6. :OUTPUT ACCEPT [0:0]
  7. -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
  8. -A INPUT -p tcp -m tcp -i eth2 --dport 22 -j ACCEPT
  9.  
  10. -A INPUT -p tcp -m tcp -d 195.177.73.203 -i eth2 --dport 25 -j ACCEPT
  11. -A INPUT -p tcp -m tcp -d 195.177.73.203 -i eth2 --dport 443 -j ACCEPT
  12. -A INPUT -p tcp -m tcp -d 195.177.73.203 -i eth2 --dport 110 -j ACCEPT
  13. #------------------ICMP_RULERS-----------------------------------------
  14. -A INPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
  15.  
  16. -A INPUT -p all -m state --state ESTABLISHED,RELATED -j ACCEPT
  17. -A INPUT -s 192.168.0.254 -i lo -j ACCEPT
  18. #-----------------WEBMIN-----------------------------------------------
  19. -A INPUT -p tcp -m tcp -d 195.177.73.203 -i eth2 --dport 10000 -j ACCEPT
  20.  
  21. -A INPUT -p tcp -m tcp -d 192.168.0.254 -i eth1 --dport 25 -j ACCEPT
  22. -A INPUT -p tcp -m tcp -d 192.168.0.254 -i eth1 --dport 110 -j ACCEPT
  23. -A INPUT -p tcp -m tcp -d 192.168.0.254 -i eth1 --dport 5190 -j ACCEPT
  24. -A INPUT -p tcp -m tcp -d 192.168.0.254 -i eth1 --dport 80 -j ACCEPT
  25. -A INPUT -p tcp -m tcp -d 192.168.0.254 -i eth1 --dport 3128 -j ACCEPT
  26. -A INPUT -p tcp -m tcp -d 192.168.0.254 -i eth1 --dport 53 -j ACCEPT
  27.  
  28. #----------------FORWARDS---------------------------------------------
  29. -A FORWARD -p tcp -m tcp -i eth1 --dport 25 -j ACCEPT
  30. -A FORWARD -i eth1 -p all -j ACCEPT
  31. -A FORWARD -p tcp -m tcp -s 192.168.0.2 --sport 3389 -j ACCEPT
  32. -A FORWARD -p tcp -m tcp -d 192.168.0.2 --dport 3389 -j ACCEPT
  33. -A FORWARD -p all -m state --state ESTABLISHED,RELATED -j ACCEPT
  34. #---------------OUTPUT------------------------------------------------
  35. -A OUTPUT -p tcp -m tcp --sport 10000 -j ACCEPT
  36.  
  37.  
  38. COMMIT
  39. # Completed on Tue Jan 12 12:45:36 2010
  40. # Generated by iptables-save v1.3.5 on Tue Jan 12 12:45:36 2010
  41. *nat
  42. :PREROUTING ACCEPT [3287:273942]
  43. :POSTROUTING ACCEPT [13:4662]
  44. :OUTPUT ACCEPT [776:50688]
  45.  
  46. -A PREROUTING -i eth2 -p tcp -m tcp --dport 3389 -j DNAT --to-destination 192.168.0.2
  47. -A POSTROUTING -o eth2 -j SNAT --to 195.177.73.203
  48.  
  49. COMMIT
  50. # Completed on Tue Jan 12 12:45:36 2010
  51. # Generated by iptables-save v1.3.5 on Tue Jan 12 12:45:36 2010
  52. *mangle
  53. :PREROUTING ACCEPT [1884708:1820524636]
  54. :INPUT ACCEPT [1876852:1818376990]
  55. :FORWARD ACCEPT [7508:2113527]
  56. :OUTPUT ACCEPT [1276258:1781436931]
  57. :POSTROUTING ACCEPT [1283766:1783550458]
  58. COMMIT
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!