Advertisement
Guest User

iptables_rules_openvpn_server

a guest
Sep 13th, 2019
125
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
  2. pkts bytes target prot opt in out source destination
  3. 68M 30G ufw-before-logging-input all -- * * 0.0.0.0/0 0.0.0.0/0
  4. 68M 30G ufw-before-input all -- * * 0.0.0.0/0 0.0.0.0/0
  5. 27021 3832K ufw-after-input all -- * * 0.0.0.0/0 0.0.0.0/0
  6. 26939 3771K ufw-after-logging-input all -- * * 0.0.0.0/0 0.0.0.0/0
  7. 26939 3771K ufw-reject-input all -- * * 0.0.0.0/0 0.0.0.0/0
  8. 26939 3771K ufw-track-input all -- * * 0.0.0.0/0 0.0.0.0/0
  9.  
  10. Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
  11. pkts bytes target prot opt in out source destination
  12. 187M 62G ufw-before-logging-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  13. 187M 62G ufw-before-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  14. 6030K 355M ufw-after-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  15. 6030K 355M ufw-after-logging-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  16. 6030K 355M ufw-reject-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  17. 6030K 355M ufw-track-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  18. 2608 11M ACCEPT all -- ens3 tun0 0.0.0.0/0 0.0.0.0/0
  19. 4331 230K ACCEPT all -- tun0 ens3 0.0.0.0/0 0.0.0.0/0
  20. 0 0 ACCEPT all -- ens3 tun0 0.0.0.0/0 0.0.0.0/0
  21. 0 0 ACCEPT all -- tun0 ens3 0.0.0.0/0 0.0.0.0/0
  22.  
  23. Chain OUTPUT (policy ACCEPT 14 packets, 1216 bytes)
  24. pkts bytes target prot opt in out source destination
  25. 66M 47G ufw-before-logging-output all -- * * 0.0.0.0/0 0.0.0.0/0
  26. 66M 47G ufw-before-output all -- * * 0.0.0.0/0 0.0.0.0/0
  27. 12326 12M ufw-after-output all -- * * 0.0.0.0/0 0.0.0.0/0
  28. 12326 12M ufw-after-logging-output all -- * * 0.0.0.0/0 0.0.0.0/0
  29. 12326 12M ufw-reject-output all -- * * 0.0.0.0/0 0.0.0.0/0
  30. 12326 12M ufw-track-output all -- * * 0.0.0.0/0 0.0.0.0/0
  31.  
  32. Chain ufw-after-forward (1 references)
  33. pkts bytes target prot opt in out source destination
  34.  
  35. Chain ufw-after-input (1 references)
  36. pkts bytes target prot opt in out source destination
  37. 0 0 ufw-skip-to-policy-input udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:137
  38. 0 0 ufw-skip-to-policy-input udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:138
  39. 0 0 ufw-skip-to-policy-input tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:139
  40. 0 0 ufw-skip-to-policy-input tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:445
  41. 0 0 ufw-skip-to-policy-input udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:67
  42. 0 0 ufw-skip-to-policy-input udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:68
  43. 0 0 ufw-skip-to-policy-input all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
  44.  
  45. Chain ufw-after-logging-forward (1 references)
  46. pkts bytes target prot opt in out source destination
  47.  
  48. Chain ufw-after-logging-input (1 references)
  49. pkts bytes target prot opt in out source destination
  50. 11 660 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  51.  
  52. Chain ufw-after-logging-output (1 references)
  53. pkts bytes target prot opt in out source destination
  54.  
  55. Chain ufw-after-output (1 references)
  56. pkts bytes target prot opt in out source destination
  57.  
  58. Chain ufw-before-forward (1 references)
  59. pkts bytes target prot opt in out source destination
  60. 791K 515M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  61. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 3
  62. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 11
  63. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 12
  64. 2693 226K ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
  65. 12979 756K ufw-user-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  66.  
  67. Chain ufw-before-input (1 references)
  68. pkts bytes target prot opt in out source destination
  69. 194 16496 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
  70. 839K 360M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  71. 3 167 ufw-logging-deny all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID
  72. 3 167 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID
  73. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 3
  74. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 11
  75. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 12
  76. 4 336 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
  77. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp spt:67 dpt:68
  78. 52386 3692K ufw-not-local all -- * * 0.0.0.0/0 0.0.0.0/0
  79. 0 0 ACCEPT udp -- * * 0.0.0.0/0 224.0.0.251 udp dpt:5353
  80. 0 0 ACCEPT udp -- * * 0.0.0.0/0 239.255.255.250 udp dpt:1900
  81. 52386 3692K ufw-user-input all -- * * 0.0.0.0/0 0.0.0.0/0
  82.  
  83. Chain ufw-before-logging-forward (1 references)
  84. pkts bytes target prot opt in out source destination
  85.  
  86. Chain ufw-before-logging-input (1 references)
  87. pkts bytes target prot opt in out source destination
  88.  
  89. Chain ufw-before-logging-output (1 references)
  90. pkts bytes target prot opt in out source destination
  91.  
  92. Chain ufw-before-output (1 references)
  93. pkts bytes target prot opt in out source destination
  94. 194 16496 ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0
  95. 901K 381M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  96. 966 95225 ufw-user-output all -- * * 0.0.0.0/0 0.0.0.0/0
  97.  
  98. Chain ufw-logging-allow (0 references)
  99. pkts bytes target prot opt in out source destination
  100. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW ALLOW] "
  101.  
  102. Chain ufw-logging-deny (2 references)
  103. pkts bytes target prot opt in out source destination
  104. 3 167 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID limit: avg 3/min burst 10
  105. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  106.  
  107. Chain ufw-not-local (1 references)
  108. pkts bytes target prot opt in out source destination
  109. 52386 3692K RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type LOCAL
  110. 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type MULTICAST
  111. 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
  112. 0 0 ufw-logging-deny all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10
  113. 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  114.  
  115. Chain ufw-reject-forward (1 references)
  116. pkts bytes target prot opt in out source destination
  117.  
  118. Chain ufw-reject-input (1 references)
  119. pkts bytes target prot opt in out source destination
  120.  
  121. Chain ufw-reject-output (1 references)
  122. pkts bytes target prot opt in out source destination
  123.  
  124. Chain ufw-skip-to-policy-forward (0 references)
  125. pkts bytes target prot opt in out source destination
  126. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  127.  
  128. Chain ufw-skip-to-policy-input (7 references)
  129. pkts bytes target prot opt in out source destination
  130. 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  131.  
  132. Chain ufw-skip-to-policy-output (0 references)
  133. pkts bytes target prot opt in out source destination
  134. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  135.  
  136. Chain ufw-track-forward (1 references)
  137. pkts bytes target prot opt in out source destination
  138. 12726 745K ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  139. 32 1920 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  140.  
  141. Chain ufw-track-input (1 references)
  142. pkts bytes target prot opt in out source destination
  143.  
  144. Chain ufw-track-output (1 references)
  145. pkts bytes target prot opt in out source destination
  146. 37 2220 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  147. 327 42290 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  148.  
  149. Chain ufw-user-forward (1 references)
  150. pkts bytes target prot opt in out source destination
  151.  
  152. Chain ufw-user-input (1 references)
  153. pkts bytes target prot opt in out source destination
  154. 76 4016 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
  155. 7 552 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 /* 'dapp_OpenSSH' */
  156. 163 8476 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:53
  157. 52053 3674K ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:53
  158. 0 0 ACCEPT tcp -- * * 10.150.152.17 0.0.0.0/0 tcp dpt:9100
  159.  
  160. Chain ufw-user-limit (0 references)
  161. pkts bytes target prot opt in out source destination
  162. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 LOG flags 0 level 4 prefix "[UFW LIMIT BLOCK] "
  163. 0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
  164.  
  165. Chain ufw-user-limit-accept (0 references)
  166. pkts bytes target prot opt in out source destination
  167. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  168.  
  169. Chain ufw-user-logging-forward (0 references)
  170. pkts bytes target prot opt in out source destination
  171.  
  172. Chain ufw-user-logging-input (0 references)
  173. pkts bytes target prot opt in out source destination
  174.  
  175. Chain ufw-user-logging-output (0 references)
  176. pkts bytes target prot opt in out source destination
  177.  
  178. Chain ufw-user-output (1 references)
  179. pkts bytes target prot opt in out source destination
Advertisement
Advertisement
Advertisement
RAW Paste Data Copied
Advertisement