Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Chain INPUT (policy ACCEPT)
- target prot opt source destination
- ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- input_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom input rule chain */
- ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED /* !fw3 */
- syn_flood tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x02 /* !fw3 */
- zone_lan_input all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- zone_wan_input all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- Chain FORWARD (policy DROP)
- target prot opt source destination
- forwarding_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom forwarding rule chain */
- ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED /* !fw3 */
- zone_lan_forward all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- zone_wan_forward all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- reject all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- DROP all -- 192.168.1.225 0.0.0.0/0
- Chain OUTPUT (policy ACCEPT)
- target prot opt source destination
- ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- output_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom output rule chain */
- ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED /* !fw3 */
- zone_lan_output all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- zone_wan_output all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- Chain forwarding_lan_rule (1 references)
- target prot opt source destination
- Chain forwarding_rule (1 references)
- target prot opt source destination
- Chain forwarding_wan_rule (1 references)
- target prot opt source destination
- Chain input_lan_rule (1 references)
- target prot opt source destination
- Chain input_rule (1 references)
- target prot opt source destination
- Chain input_wan_rule (1 references)
- target prot opt source destination
- Chain output_lan_rule (1 references)
- target prot opt source destination
- Chain output_rule (1 references)
- target prot opt source destination
- Chain output_wan_rule (1 references)
- target prot opt source destination
- Chain reject (3 references)
- target prot opt source destination
- REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */ reject-with tcp-reset
- REJECT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */ reject-with icmp-port-unreachable
- Chain syn_flood (1 references)
- target prot opt source destination
- RETURN tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x02 limit: avg 25/sec burst 50 /* !fw3 */
- DROP all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- Chain zone_lan_dest_ACCEPT (4 references)
- target prot opt source destination
- ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- Chain zone_lan_forward (1 references)
- target prot opt source destination
- forwarding_lan_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom lan forwarding rule chain */
- zone_wan_dest_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Zone lan to wan forwarding policy */
- ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT /* !fw3: Accept port forwards */
- zone_lan_dest_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- Chain zone_lan_input (1 references)
- target prot opt source destination
- input_lan_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom lan input rule chain */
- ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT /* !fw3: Accept port redirections */
- zone_lan_src_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- Chain zone_lan_output (1 references)
- target prot opt source destination
- output_lan_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom lan output rule chain */
- zone_lan_dest_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- Chain zone_lan_src_ACCEPT (1 references)
- target prot opt source destination
- ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate NEW,UNTRACKED /* !fw3 */
- Chain zone_wan_dest_ACCEPT (2 references)
- target prot opt source destination
- DROP all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID /* !fw3: Prevent NAT leakage */
- ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- Chain zone_wan_dest_REJECT (1 references)
- target prot opt source destination
- reject all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- Chain zone_wan_forward (1 references)
- target prot opt source destination
- forwarding_wan_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom wan forwarding rule chain */
- zone_lan_dest_ACCEPT esp -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Allow-IPSec-ESP */
- zone_lan_dest_ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:500 /* !fw3: Allow-ISAKMP */
- ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT /* !fw3: Accept port forwards */
- zone_wan_dest_REJECT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- Chain zone_wan_input (1 references)
- target prot opt source destination
- input_wan_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom wan input rule chain */
- ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:68 /* !fw3: Allow-DHCP-Renew */
- ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 /* !fw3: Allow-Ping */
- ACCEPT 2 -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Allow-IGMP */
- ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT /* !fw3: Accept port redirections */
- zone_wan_src_REJECT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- Chain zone_wan_output (1 references)
- target prot opt source destination
- output_wan_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom wan output rule chain */
- zone_wan_dest_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
- Chain zone_wan_src_REJECT (1 references)
- target prot opt source destination
- reject all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
