API tools faq
paste
Advertisement
trupsalms

iptables save -c

trupsalms
Jul 22nd, 2017
609
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.01 KB | None | 0 0
raw download clone embed print report
  1. [root@vpnsquid ~]# iptables-save -c
  2. # Generated by iptables-save v1.4.7 on Sat Jul 22 09:40:14 2017
  3. *nat
  4. :PREROUTING ACCEPT [14693:797845]
  5. :POSTROUTING ACCEPT [0:0]
  6. :OUTPUT ACCEPT [652:46213]
  7. [274:16440] -A PREROUTING -s 172.8.0.0/24 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128
  8. [0:0] -A PREROUTING -s 172.8.0.0/24 -i tun1 -p tcp -m tcp --sport 80 -j REDIRECT --to-ports 3128
  9. [0:0] -A PREROUTING -s 172.8.0.0/24 -i tun1 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128
  10. [0:0] -A POSTROUTING -s 172.8.0.0/24 -o eth0 -j MASQUERADE
  11. [0:0] -A POSTROUTING -s 172.8.0.0/24 -o tun1 -j MASQUERADE
  12. [2:1585] -A POSTROUTING -o eth0 -j MASQUERADE
  13. [1237:78880] -A POSTROUTING -o tun+ -j MASQUERADE
  14. COMMIT
  15. # Completed on Sat Jul 22 09:40:14 2017
  16. # Generated by iptables-save v1.4.7 on Sat Jul 22 09:40:14 2017
  17. *mangle
  18. :PREROUTING ACCEPT [206641:109928248]
  19. :INPUT ACCEPT [154093:72116719]
  20. :FORWARD ACCEPT [52548:37811529]
  21. :OUTPUT ACCEPT [135844:105364471]
  22. :POSTROUTING ACCEPT [187666:143145592]
  23. COMMIT
  24. # Completed on Sat Jul 22 09:40:14 2017
  25. # Generated by iptables-save v1.4.7 on Sat Jul 22 09:40:14 2017
  26. *filter
  27. :INPUT DROP [9146:481863]
  28. :FORWARD DROP [0:0]
  29. :OUTPUT DROP [726:30408]
  30. [130821:70870423] -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
  31. [259:15620] -A INPUT -i eth0 -p tcp -m tcp --dport 22 -m state --state NEW,ESTABLISHED -j ACCEPT
  32. [13:740] -A INPUT -i eth0 -p tcp -m tcp -m multiport --dports 53,80,443,10000 -m state --state NEW,ESTABLISHED -j ACCEPT
  33. [13575:731310] -A INPUT -i eth0 -p tcp -m tcp --dport 3128 -m state --state NEW,ESTABLISHED -j ACCEPT
  34. [0:0] -A INPUT -i tun1 -p tcp -m tcp --sport 3128 -m state --state NEW,ESTABLISHED -j ACCEPT
  35. [1:67] -A INPUT -i eth0 -p udp -m udp --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT
  36. [0:0] -A INPUT -i eth0 -p tcp -m tcp --sport 22 -m state --state ESTABLISHED -j ACCEPT
  37. [0:0] -A INPUT -i eth0 -p tcp -m tcp --sport 443 -m state --state ESTABLISHED -j ACCEPT
  38. [0:0] -A INPUT -i eth0 -p tcp -m tcp --sport 80 -m state --state ESTABLISHED -j ACCEPT
  39. [0:0] -A INPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
  40. [0:0] -A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
  41. [0:0] -A INPUT -i lo -j ACCEPT
  42. [1:40] -A INPUT -p tcp -m tcp --dport 80 -m limit --limit 25/min --limit-burst 100 -j ACCEPT
  43. [0:0] -A INPUT -i eth0 -p udp -m state --state NEW -m udp --dport 1194 -j ACCEPT
  44. [1:70] -A INPUT -i eth0 -p udp -m state --state NEW -m udp --dport 1195 -j ACCEPT
  45. [276:16586] -A INPUT -i tun+ -j ACCEPT
  46. [51950:37775569] -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
  47. [598:35960] -A FORWARD -i tun+ -j ACCEPT
  48. [0:0] -A FORWARD -i tun+ -o eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT
  49. [0:0] -A FORWARD -i eth0 -o tun+ -m state --state RELATED,ESTABLISHED -j ACCEPT
  50. [134463:105287258] -A OUTPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
  51. [0:0] -A OUTPUT -o eth0 -p tcp -m tcp --sport 22 -m state --state ESTABLISHED -j ACCEPT
  52. [0:0] -A OUTPUT -o eth0 -p tcp -m tcp -m multiport --sports 53,80,443,10000 -m state --state ESTABLISHED -j ACCEPT
  53. [2:2880] -A OUTPUT -p tcp -m tcp --sport 3128 -m state --state NEW,ESTABLISHED -j ACCEPT
  54. [0:0] -A OUTPUT -p tcp -m tcp --dport 3128 -m state --state NEW,ESTABLISHED -j ACCEPT
  55. [0:0] -A OUTPUT -o eth0 -p udp -m udp --sport 53 -m state --state NEW,ESTABLISHED -j ACCEPT
  56. [0:0] -A OUTPUT -o eth0 -p udp -m udp --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT
  57. [0:0] -A OUTPUT -o eth0 -p tcp -m tcp --dport 22 -m state --state NEW,ESTABLISHED -j ACCEPT
  58. [0:0] -A OUTPUT -o eth0 -p tcp -m tcp --dport 443 -m state --state NEW,ESTABLISHED -j ACCEPT
  59. [0:0] -A OUTPUT -o eth0 -p tcp -m tcp --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
  60. [0:0] -A OUTPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
  61. [0:0] -A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
  62. [0:0] -A OUTPUT -o lo -j ACCEPT
  63. [652:43780] -A OUTPUT -o tun+ -j ACCEPT
  64. [1:145] -A OUTPUT -o eth0 -p udp -m state --state NEW -m udp --dport 1194 -j ACCEPT
  65. [0:0] -A OUTPUT -o eth0 -p udp -m state --state NEW -m udp --dport 1195 -j ACCEPT
  66. COMMIT
  67. # Completed on Sat Jul 22 09:40:14 2017
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!