API tools faq
paste
Advertisement
Guest User

iptables_rules_openvpn_server

a guest
Sep 13th, 2019
125
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 12.45 KB
Copied copy raw download clone embed print report
  1. Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
  2. pkts bytes target prot opt in out source destination
  3. 68M 30G ufw-before-logging-input all -- * * 0.0.0.0/0 0.0.0.0/0
  4. 68M 30G ufw-before-input all -- * * 0.0.0.0/0 0.0.0.0/0
  5. 27021 3832K ufw-after-input all -- * * 0.0.0.0/0 0.0.0.0/0
  6. 26939 3771K ufw-after-logging-input all -- * * 0.0.0.0/0 0.0.0.0/0
  7. 26939 3771K ufw-reject-input all -- * * 0.0.0.0/0 0.0.0.0/0
  8. 26939 3771K ufw-track-input all -- * * 0.0.0.0/0 0.0.0.0/0
  9.  
  10. Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
  11. pkts bytes target prot opt in out source destination
  12. 187M 62G ufw-before-logging-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  13. 187M 62G ufw-before-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  14. 6030K 355M ufw-after-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  15. 6030K 355M ufw-after-logging-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  16. 6030K 355M ufw-reject-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  17. 6030K 355M ufw-track-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  18. 2608 11M ACCEPT all -- ens3 tun0 0.0.0.0/0 0.0.0.0/0
  19. 4331 230K ACCEPT all -- tun0 ens3 0.0.0.0/0 0.0.0.0/0
  20. 0 0 ACCEPT all -- ens3 tun0 0.0.0.0/0 0.0.0.0/0
  21. 0 0 ACCEPT all -- tun0 ens3 0.0.0.0/0 0.0.0.0/0
  22.  
  23. Chain OUTPUT (policy ACCEPT 14 packets, 1216 bytes)
  24. pkts bytes target prot opt in out source destination
  25. 66M 47G ufw-before-logging-output all -- * * 0.0.0.0/0 0.0.0.0/0
  26. 66M 47G ufw-before-output all -- * * 0.0.0.0/0 0.0.0.0/0
  27. 12326 12M ufw-after-output all -- * * 0.0.0.0/0 0.0.0.0/0
  28. 12326 12M ufw-after-logging-output all -- * * 0.0.0.0/0 0.0.0.0/0
  29. 12326 12M ufw-reject-output all -- * * 0.0.0.0/0 0.0.0.0/0
  30. 12326 12M ufw-track-output all -- * * 0.0.0.0/0 0.0.0.0/0
  31.  
  32. Chain ufw-after-forward (1 references)
  33. pkts bytes target prot opt in out source destination
  34.  
  35. Chain ufw-after-input (1 references)
  36. pkts bytes target prot opt in out source destination
  37. 0 0 ufw-skip-to-policy-input udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:137
  38. 0 0 ufw-skip-to-policy-input udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:138
  39. 0 0 ufw-skip-to-policy-input tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:139
  40. 0 0 ufw-skip-to-policy-input tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:445
  41. 0 0 ufw-skip-to-policy-input udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:67
  42. 0 0 ufw-skip-to-policy-input udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:68
  43. 0 0 ufw-skip-to-policy-input all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
  44.  
  45. Chain ufw-after-logging-forward (1 references)
  46. pkts bytes target prot opt in out source destination
  47.  
  48. Chain ufw-after-logging-input (1 references)
  49. pkts bytes target prot opt in out source destination
  50. 11 660 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  51.  
  52. Chain ufw-after-logging-output (1 references)
  53. pkts bytes target prot opt in out source destination
  54.  
  55. Chain ufw-after-output (1 references)
  56. pkts bytes target prot opt in out source destination
  57.  
  58. Chain ufw-before-forward (1 references)
  59. pkts bytes target prot opt in out source destination
  60. 791K 515M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  61. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 3
  62. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 11
  63. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 12
  64. 2693 226K ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
  65. 12979 756K ufw-user-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  66.  
  67. Chain ufw-before-input (1 references)
  68. pkts bytes target prot opt in out source destination
  69. 194 16496 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
  70. 839K 360M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  71. 3 167 ufw-logging-deny all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID
  72. 3 167 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID
  73. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 3
  74. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 11
  75. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 12
  76. 4 336 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
  77. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp spt:67 dpt:68
  78. 52386 3692K ufw-not-local all -- * * 0.0.0.0/0 0.0.0.0/0
  79. 0 0 ACCEPT udp -- * * 0.0.0.0/0 224.0.0.251 udp dpt:5353
  80. 0 0 ACCEPT udp -- * * 0.0.0.0/0 239.255.255.250 udp dpt:1900
  81. 52386 3692K ufw-user-input all -- * * 0.0.0.0/0 0.0.0.0/0
  82.  
  83. Chain ufw-before-logging-forward (1 references)
  84. pkts bytes target prot opt in out source destination
  85.  
  86. Chain ufw-before-logging-input (1 references)
  87. pkts bytes target prot opt in out source destination
  88.  
  89. Chain ufw-before-logging-output (1 references)
  90. pkts bytes target prot opt in out source destination
  91.  
  92. Chain ufw-before-output (1 references)
  93. pkts bytes target prot opt in out source destination
  94. 194 16496 ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0
  95. 901K 381M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  96. 966 95225 ufw-user-output all -- * * 0.0.0.0/0 0.0.0.0/0
  97.  
  98. Chain ufw-logging-allow (0 references)
  99. pkts bytes target prot opt in out source destination
  100. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW ALLOW] "
  101.  
  102. Chain ufw-logging-deny (2 references)
  103. pkts bytes target prot opt in out source destination
  104. 3 167 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID limit: avg 3/min burst 10
  105. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  106.  
  107. Chain ufw-not-local (1 references)
  108. pkts bytes target prot opt in out source destination
  109. 52386 3692K RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type LOCAL
  110. 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type MULTICAST
  111. 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
  112. 0 0 ufw-logging-deny all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10
  113. 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  114.  
  115. Chain ufw-reject-forward (1 references)
  116. pkts bytes target prot opt in out source destination
  117.  
  118. Chain ufw-reject-input (1 references)
  119. pkts bytes target prot opt in out source destination
  120.  
  121. Chain ufw-reject-output (1 references)
  122. pkts bytes target prot opt in out source destination
  123.  
  124. Chain ufw-skip-to-policy-forward (0 references)
  125. pkts bytes target prot opt in out source destination
  126. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  127.  
  128. Chain ufw-skip-to-policy-input (7 references)
  129. pkts bytes target prot opt in out source destination
  130. 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  131.  
  132. Chain ufw-skip-to-policy-output (0 references)
  133. pkts bytes target prot opt in out source destination
  134. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  135.  
  136. Chain ufw-track-forward (1 references)
  137. pkts bytes target prot opt in out source destination
  138. 12726 745K ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  139. 32 1920 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  140.  
  141. Chain ufw-track-input (1 references)
  142. pkts bytes target prot opt in out source destination
  143.  
  144. Chain ufw-track-output (1 references)
  145. pkts bytes target prot opt in out source destination
  146. 37 2220 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  147. 327 42290 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  148.  
  149. Chain ufw-user-forward (1 references)
  150. pkts bytes target prot opt in out source destination
  151.  
  152. Chain ufw-user-input (1 references)
  153. pkts bytes target prot opt in out source destination
  154. 76 4016 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
  155. 7 552 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 /* 'dapp_OpenSSH' */
  156. 163 8476 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:53
  157. 52053 3674K ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:53
  158. 0 0 ACCEPT tcp -- * * 10.150.152.17 0.0.0.0/0 tcp dpt:9100
  159.  
  160. Chain ufw-user-limit (0 references)
  161. pkts bytes target prot opt in out source destination
  162. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 LOG flags 0 level 4 prefix "[UFW LIMIT BLOCK] "
  163. 0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
  164.  
  165. Chain ufw-user-limit-accept (0 references)
  166. pkts bytes target prot opt in out source destination
  167. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  168.  
  169. Chain ufw-user-logging-forward (0 references)
  170. pkts bytes target prot opt in out source destination
  171.  
  172. Chain ufw-user-logging-input (0 references)
  173. pkts bytes target prot opt in out source destination
  174.  
  175. Chain ufw-user-logging-output (0 references)
  176. pkts bytes target prot opt in out source destination
  177.  
  178. Chain ufw-user-output (1 references)
  179. pkts bytes target prot opt in out source destination
Advertisement
Advertisement
Advertisement
RAW Paste Data Copied
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!