API tools faq
paste
Guest User

Untitled

a guest
Jul 22nd, 2018
124
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.14 KB | None | 0 0
raw download clone embed print report
  1. -P INPUT ACCEPT
  2. -P FORWARD DROP
  3. -P OUTPUT ACCEPT
  4. -A INPUT -i lo -j ACCEPT
  5. -A INPUT ! -i br0 -p udp -m udp --dport 67 -j REJECT --reject-with icmp-port-unreachable
  6. -A INPUT ! -i br0 -p udp -m udp --dport 53 -j REJECT --reject-with icmp-port-unreachable
  7. -A INPUT -p tcp -m tcp --dport 22 -m state --state NEW -m recent --set --name SSH --rsource
  8. -A INPUT -p tcp -m tcp --dport 22 -m state --state NEW -m recent --update --seconds 60 --hitcount 8 --rttl --name SSH --rsource -j DROP
  9. -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
  10. -A INPUT -p tcp -m tcp --dport 25 -j ACCEPT
  11. -A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
  12. -A INPUT -p udp -m udp --dport 123 -j ACCEPT
  13. -A INPUT -i br0 -p tcp -m tcp --dport 137:139 -j ACCEPT
  14. -A INPUT -i br0 -p udp -m udp --dport 137:139 -j ACCEPT
  15. -A INPUT -p tcp -m tcp --dport 143 -j ACCEPT
  16. -A INPUT -p tcp -m tcp --dport 443 -j ACCEPT
  17. -A INPUT -p tcp -m tcp --dport 587 -j ACCEPT
  18. -A INPUT ! -i br0 -p tcp -m tcp --dport 0:1023 -j DROP
  19. -A INPUT ! -i br0 -p udp -m udp --dport 0:1023 -j DROP
  20. -A INPUT ! -d 192.168.0.1/32 -i br0 -j ACCEPT
  21. -A INPUT ! -i br0 -m state --state NEW -j REJECT --reject-with icmp-host-prohibited
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!