Advertisement
Guest User

Iptables -L

a guest
May 15th, 2018
479
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 20.19 KB | None | 0 0
  1. chain INPUT (policy DROP)
  2. target prot opt source destination
  3. ACCEPT all -- anywhere anywhere state RELATED,E
  4. STABLISHED
  5. ACCEPT all -- ip-10-8-0-1.us-east-2.compute.internal anywhere
  6.  
  7. ACCEPT all -- ip-172-31-41-165.us-east-2.compute.internal anywhere
  8.  
  9. ACCEPT all -- localhost anywhere
  10. ACCEPT tcp -- anywhere anywhere tcp dpt:2236
  11. ACCEPT tcp -- anywhere anywhere multiport dport
  12. s http,https
  13. ACCEPT tcp -- anywhere anywhere multiport dport
  14. s ftp,12000:12100
  15. ACCEPT udp -- anywhere anywhere udp dpt:domain
  16. ACCEPT tcp -- anywhere anywhere tcp dpt:domain
  17. ACCEPT tcp -- anywhere anywhere multiport dport
  18. s smtp,urd,submission,2525
  19. ACCEPT tcp -- anywhere anywhere multiport dport
  20. s pop3,pop3s
  21. ACCEPT tcp -- anywhere anywhere multiport dport
  22. s imap2,imaps
  23. ACCEPT tcp -- anywhere anywhere multiport dport
  24. s mysql,postgresql
  25. ACCEPT tcp -- anywhere anywhere tcp dpt:8083
  26. ACCEPT icmp -- anywhere anywhere
  27.  
  28. Chain FORWARD (policy ACCEPT)
  29. target prot opt source destination
  30. ufw-before-logging-forward all -- anywhere anywhere
  31.  
  32. ufw-before-forward all -- anywhere anywhere
  33. ufw-after-forward all -- anywhere anywhere
  34. ufw-after-logging-forward all -- anywhere anywhere
  35. ufw-reject-forward all -- anywhere anywhere
  36. ufw-track-forward all -- anywhere anywhere
  37.  
  38. Chain OUTPUT (policy ACCEPT)
  39. target prot opt source destination
  40. ufw-before-logging-output all -- anywhere anywhere
  41. ufw-before-output all -- anywhere anywhere
  42. ufw-after-output all -- anywhere anywhere
  43. ufw-after-logging-output all -- anywhere anywhere
  44. ufw-reject-output all -- anywhere anywhere
  45. ufw-track-output all -- anywhere anywhere
  46.  
  47. Chain f2b-sshd (0 references)
  48. target prot opt source destination
  49. RETURN all -- anywhere anywhere
  50. RETURN all -- anywhere anywhere
  51.  
  52. Chain fail2ban-FTP (0 references)
  53. target prot opt source destination
  54. RETURN all -- anywhere anywhere
  55.  
  56. Chain fail2ban-MAIL (0 references)
  57. target prot opt source destination
  58. RETURN all -- anywhere anywhere
  59.  
  60. Chain fail2ban-SSH (0 references)
  61. target prot opt source destination
  62. RETURN all -- anywhere anywhere
  63.  
  64. Chain fail2ban-VESTA (0 references)
  65. target prot opt source destination
  66. RETURN all -- anywhere anywhere
  67.  
  68. Chain ufw-after-forward (1 references)
  69. target prot opt source destination
  70.  
  71. Chain ufw-after-input (0 references)
  72. target prot opt source destination
  73. ufw-skip-to-policy-input udp -- anywhere anywhere
  74. udp dpt:netbios-ns
  75. ufw-skip-to-policy-input udp -- anywhere anywhere
  76. udp dpt:netbios-dgm
  77. ufw-skip-to-policy-input tcp -- anywhere anywhere
  78. tcp dpt:netbios-ssn
  79. ufw-skip-to-policy-input tcp -- anywhere anywhere
  80. tcp dpt:microsoft-ds
  81. ufw-skip-to-policy-input udp -- anywhere anywhere
  82. udp dpt:bootps
  83. ufw-skip-to-policy-input udp -- anywhere anywhere
  84. udp dpt:bootpc
  85. ufw-skip-to-policy-input all -- anywhere anywhere
  86. ADDRTYPE match dst-type BROADCAST
  87.  
  88. Chain ufw-after-logging-forward (1 references)
  89. target prot opt source destination
  90.  
  91. Chain ufw-after-logging-input (0 references)
  92. target prot opt source destination
  93. LOG all -- anywhere anywhere limit: avg 3/mi
  94. n burst 10 LOG level warning prefix "[UFW BLOCK] "
  95.  
  96. Chain ufw-after-logging-output (1 references)
  97. target prot opt source destination
  98.  
  99. Chain ufw-after-output (1 references)
  100. target prot opt source destination
  101.  
  102. Chain ufw-before-forward (1 references)
  103. target prot opt source destination
  104. ACCEPT all -- anywhere anywhere ctstate RELATED
  105. ,ESTABLISHED
  106. ACCEPT icmp -- anywhere anywhere icmp destinatio
  107. n-unreachable
  108. ACCEPT icmp -- anywhere anywhere icmp source-que
  109. nch
  110. ACCEPT icmp -- anywhere anywhere icmp time-excee
  111. ded
  112. ACCEPT icmp -- anywhere anywhere icmp parameter-
  113. problem
  114. ACCEPT icmp -- anywhere anywhere icmp echo-reque
  115. st
  116. ufw-user-forward all -- anywhere anywhere
  117.  
  118. Chain ufw-before-input (0 references)
  119. target prot opt source destination
  120. ACCEPT all -- anywhere anywhere
  121. ACCEPT all -- anywhere anywhere ctstate RELATED
  122. ,ESTABLISHED
  123. ufw-logging-deny all -- anywhere anywhere ctstate
  124. INVALID
  125. DROP all -- anywhere anywhere ctstate INVALID
  126. ACCEPT icmp -- anywhere anywhere icmp destinatio
  127. n-unreachable
  128. ACCEPT icmp -- anywhere anywhere icmp source-que
  129. nch
  130. ACCEPT icmp -- anywhere anywhere icmp time-excee
  131. ded
  132. ACCEPT icmp -- anywhere anywhere icmp parameter-
  133. problem
  134. ACCEPT icmp -- anywhere anywhere icmp echo-reque
  135. st
  136. ACCEPT udp -- anywhere anywhere udp spt:bootps
  137. dpt:bootpc
  138. ufw-not-local all -- anywhere anywhere
  139. ACCEPT udp -- anywhere 224.0.0.251 udp dpt:mdns
  140. ACCEPT udp -- anywhere 239.255.255.250 udp dpt:1900
  141. ufw-user-input all -- anywhere anywhere
  142.  
  143. Chain ufw-before-logging-forward (1 references)
  144. target prot opt source destination
  145.  
  146. Chain ufw-before-logging-input (0 references)
  147. target prot opt source destination
  148.  
  149. Chain ufw-before-logging-output (1 references)
  150. target prot opt source destination
  151.  
  152. Chain ufw-before-output (1 references)
  153. target prot opt source destination
  154. ACCEPT all -- anywhere anywhere
  155. ACCEPT all -- anywhere anywhere ctstate RELATED
  156. ,ESTABLISHED
  157. ufw-user-output all -- anywhere anywhere
  158.  
  159. Chain ufw-logging-allow (0 references)
  160. target prot opt source destination
  161. LOG all -- anywhere anywhere limit: avg 3/mi
  162. n burst 10 LOG level warning prefix "[UFW ALLOW] "
  163.  
  164. Chain ufw-logging-deny (2 references)
  165. target prot opt source destination
  166. RETURN all -- anywhere anywhere ctstate INVALID
  167. limit: avg 3/min burst 10
  168. LOG all -- anywhere anywhere limit: avg 3/mi
  169. n burst 10 LOG level warning prefix "[UFW BLOCK] "
  170.  
  171. Chain ufw-not-local (1 references)
  172. target prot opt source destination
  173. RETURN all -- anywhere anywhere ADDRTYPE match
  174. dst-type LOCAL
  175. RETURN all -- anywhere anywhere ADDRTYPE match
  176. dst-type MULTICAST
  177. RETURN all -- anywhere anywhere ADDRTYPE match
  178. dst-type BROADCAST
  179. ufw-logging-deny all -- anywhere anywhere limit: a
  180. vg 3/min burst 10
  181. DROP all -- anywhere anywhere
  182.  
  183. Chain ufw-reject-forward (1 references)
  184. target prot opt source destination
  185.  
  186. Chain ufw-reject-input (0 references)
  187. target prot opt source destination
  188.  
  189. Chain ufw-reject-output (1 references)
  190. target prot opt source destination
  191.  
  192. Chain ufw-skip-to-policy-forward (0 references)
  193. target prot opt source destination
  194. ACCEPT all -- anywhere anywhere
  195.  
  196. Chain ufw-skip-to-policy-input (7 references)
  197. target prot opt source destination
  198. DROP all -- anywhere anywhere
  199.  
  200. Chain ufw-skip-to-policy-output (0 references)
  201. target prot opt source destination
  202. ACCEPT all -- anywhere anywhere
  203.  
  204. Chain ufw-track-forward (1 references)
  205. target prot opt source destination
  206. ACCEPT tcp -- anywhere anywhere ctstate NEW
  207. ACCEPT udp -- anywhere anywhere ctstate NEW
  208.  
  209. Chain ufw-track-input (0 references)
  210. target prot opt source destination
  211.  
  212. Chain ufw-track-output (1 references)
  213. target prot opt source destination
  214. ACCEPT tcp -- anywhere anywhere ctstate NEW
  215. ACCEPT udp -- anywhere anywhere ctstate NEW
  216.  
  217. Chain ufw-user-forward (1 references)
  218. target prot opt source destination
  219.  
  220. Chain ufw-user-input (1 references)
  221. target prot opt source destination
  222. ACCEPT tcp -- anywhere anywhere tcp dpt:smtp /*
  223. 'dapp_Postfix' */
  224. ACCEPT udp -- anywhere anywhere udp dpt:openvpn
  225. ACCEPT tcp -- anywhere anywhere tcp dpt:ssh /*
  226. 'dapp_OpenSSH' */
  227. ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
  228. ACCEPT udp -- anywhere anywhere udp dpt:ssh
  229. ACCEPT tcp -- anywhere anywhere tcp dpt:https
  230. ACCEPT udp -- anywhere anywhere udp dpt:https
  231. ACCEPT tcp -- anywhere anywhere tcp dpt:2236
  232. ACCEPT udp -- anywhere anywhere udp dpt:2236
  233. ACCEPT tcp -- anywhere anywhere tcp dpt:8083
  234. ACCEPT udp -- anywhere anywhere udp dpt:8083
  235. ACCEPT tcp -- anywhere anywhere tcp dpt:http
  236. ACCEPT udp -- anywhere anywhere udp dpt:http
  237.  
  238. Chain ufw-user-limit (0 references)
  239. target prot opt source destination
  240. LOG all -- anywhere anywhere limit: avg 3/mi
  241. n burst 5 LOG level warning prefix "[UFW LIMIT BLOCK] "
  242. REJECT all -- anywhere anywhere reject-with icm
  243. p-port-unreachable
  244.  
  245. Chain ufw-user-limit-accept (0 references)
  246. target prot opt source destination
  247. ACCEPT all -- anywhere anywhere
  248.  
  249. Chain ufw-user-logging-forward (0 references)
  250. target prot opt source destination
  251.  
  252. Chain ufw-user-logging-input (0 references)
  253. target prot opt source destination
  254.  
  255. Chain ufw-user-logging-output (0 references)
  256. target prot opt source destination
  257.  
  258. Chain ufw-user-output (1 references)
  259. target prot opt source destination
  260.  
  261. Chain vesta (0 references)
  262. target prot opt source destination
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement