API tools faq
paste
cejack4

iptables -L -n -v -x

cejack4
Feb 18th, 2012
211
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 44.31 KB | None | 0 0
raw download clone embed print report
  1. charles@ZentyalCJ:~$ sudo iptables -L -n -v -x
  2. [sudo] password for charles:
  3. Chain INPUT (policy DROP 3 packets, 2984 bytes)
  4. pkts bytes target prot opt in out source destination
  5. 6094 586282 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
  6. 1 40 idrop all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
  7. 3713 3011609 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
  8. 1214 150625 inospoof all -- * * 0.0.0.0/0 0.0.0.0/0
  9. 4 803 iexternalmodules all -- * * 0.0.0.0/0 0.0.0.0/0
  10. 4 803 iexternal all -- * * 0.0.0.0/0 0.0.0.0/0
  11. 4 803 inoexternal all -- * * 0.0.0.0/0 0.0.0.0/0
  12. 4 803 imodules all -- * * 0.0.0.0/0 0.0.0.0/0
  13. 4 803 iintservs all -- * * 0.0.0.0/0 0.0.0.0/0
  14. 4 803 iglobal all -- * * 0.0.0.0/0 0.0.0.0/0
  15. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 8 state NEW
  16. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 0 state NEW
  17. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 3 state NEW
  18. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 4 state NEW
  19. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 11 state NEW
  20. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 12 state NEW
  21. 1 78 idrop all -- * * 0.0.0.0/0 0.0.0.0/0
  22.  
  23. Chain FORWARD (policy DROP 0 packets, 0 bytes)
  24. pkts bytes target prot opt in out source destination
  25. 0 0 fdrop all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
  26. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
  27. 0 0 fnospoof all -- * * 0.0.0.0/0 0.0.0.0/0
  28. 0 0 fredirects all -- * * 0.0.0.0/0 0.0.0.0/0
  29. 0 0 fmodules all -- * * 0.0.0.0/0 0.0.0.0/0
  30. 0 0 ffwdrules all -- * * 0.0.0.0/0 0.0.0.0/0
  31. 0 0 fnoexternal all -- * * 0.0.0.0/0 0.0.0.0/0
  32. 0 0 fdns all -- * * 0.0.0.0/0 0.0.0.0/0
  33. 0 0 fobjects all -- * * 0.0.0.0/0 0.0.0.0/0
  34. 0 0 fglobal all -- * * 0.0.0.0/0 0.0.0.0/0
  35. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 8 state NEW
  36. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 0 state NEW
  37. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 3 state NEW
  38. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 4 state NEW
  39. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 11 state NEW
  40. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 12 state NEW
  41. 0 0 fdrop all -- * * 0.0.0.0/0 0.0.0.0/0
  42.  
  43. Chain OUTPUT (policy DROP 0 packets, 0 bytes)
  44. pkts bytes target prot opt in out source destination
  45. 6094 586282 ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0
  46. 0 0 odrop all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
  47. 3253 923396 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
  48. 650 59626 ointernal all -- * * 0.0.0.0/0 0.0.0.0/0
  49. 252 33804 omodules all -- * * 0.0.0.0/0 0.0.0.0/0
  50. 127 23964 oglobal all -- * * 0.0.0.0/0 0.0.0.0/0
  51. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 8 state NEW
  52. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 0 state NEW
  53. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 3 state NEW
  54. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 4 state NEW
  55. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 11 state NEW
  56. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 12 state NEW
  57. 0 0 odrop all -- * * 0.0.0.0/0 0.0.0.0/0
  58.  
  59. Chain drop (11 references)
  60. pkts bytes target prot opt in out source destination
  61. 1211 149862 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  62.  
  63. Chain fdns (1 references)
  64. pkts bytes target prot opt in out source destination
  65. 0 0 ACCEPT udp -- * * 0.0.0.0/0 192.168.1.150 state NEW udp dpt:53
  66. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 192.168.1.150 state NEW tcp dpt:53
  67. 0 0 ACCEPT udp -- * * 0.0.0.0/0 68.105.28.12 state NEW udp dpt:53
  68. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 68.105.28.12 state NEW tcp dpt:53
  69. 0 0 ACCEPT udp -- * * 0.0.0.0/0 68.105.29.11 state NEW udp dpt:53
  70. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 68.105.29.11 state NEW tcp dpt:53
  71.  
  72. Chain fdrop (5 references)
  73. pkts bytes target prot opt in out source destination
  74. 0 0 drop all -- * * 0.0.0.0/0 0.0.0.0/0
  75.  
  76. Chain ffwdrules (1 references)
  77. pkts bytes target prot opt in out source destination
  78. 0 0 RETURN all -- eth0 * 0.0.0.0/0 0.0.0.0/0
  79. 0 0 RETURN all -- eth1 * 0.0.0.0/0 0.0.0.0/0
  80. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  81.  
  82. Chain fglobal (1 references)
  83. pkts bytes target prot opt in out source destination
  84. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  85. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
  86. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
  87.  
  88. Chain fmodules (1 references)
  89. pkts bytes target prot opt in out source destination
  90.  
  91. Chain fnoexternal (1 references)
  92. pkts bytes target prot opt in out source destination
  93.  
  94. Chain fnospoof (1 references)
  95. pkts bytes target prot opt in out source destination
  96. 0 0 fnospoofmodules all -- * * 0.0.0.0/0 0.0.0.0/0
  97. 0 0 fdrop all -- !eth0 * 192.168.1.0/24 0.0.0.0/0
  98. 0 0 fdrop all -- !eth1 * 192.168.1.0/24 0.0.0.0/0
  99.  
  100. Chain fnospoofmodules (1 references)
  101. pkts bytes target prot opt in out source destination
  102.  
  103. Chain fobjects (1 references)
  104. pkts bytes target prot opt in out source destination
  105.  
  106. Chain fredirects (1 references)
  107. pkts bytes target prot opt in out source destination
  108.  
  109. Chain ftoexternalonly (0 references)
  110. pkts bytes target prot opt in out source destination
  111. 0 0 fdrop all -- * * 0.0.0.0/0 0.0.0.0/0
  112.  
  113. Chain idrop (4 references)
  114. pkts bytes target prot opt in out source destination
  115. 1212 149940 drop all -- * * 0.0.0.0/0 0.0.0.0/0
  116.  
  117. Chain iexternal (1 references)
  118. pkts bytes target prot opt in out source destination
  119. 0 0 RETURN all -- eth0 * 0.0.0.0/0 0.0.0.0/0
  120. 3 725 RETURN all -- eth1 * 0.0.0.0/0 0.0.0.0/0
  121. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
  122. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:20 state NEW
  123. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 state NEW
  124. 0 0 ACCEPT 47 -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
  125. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1723 state NEW
  126. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:587 state NEW
  127. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:993 state NEW
  128. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:110 state NEW
  129. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:143 state NEW
  130. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:995 state NEW
  131. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:4190 state NEW
  132. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 state NEW
  133. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:465 state NEW
  134.  
  135. Chain iexternalmodules (1 references)
  136. pkts bytes target prot opt in out source destination
  137. 0 0 RETURN all -- eth0 * 0.0.0.0/0 0.0.0.0/0
  138. 3 725 RETURN all -- eth1 * 0.0.0.0/0 0.0.0.0/0
  139.  
  140. Chain iglobal (1 references)
  141. pkts bytes target prot opt in out source destination
  142. 3 725 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
  143. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:67 state NEW
  144. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:69 state NEW
  145. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:138 state NEW
  146. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:138 state NEW
  147. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:139 state NEW
  148. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:139 state NEW
  149. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:445 state NEW
  150. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:445 state NEW
  151. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:137 state NEW
  152. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:137 state NEW
  153. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:53 state NEW
  154. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 state NEW
  155. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:20 state NEW
  156. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 state NEW
  157. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
  158. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
  159. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:123 state NEW
  160. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 state NEW
  161. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 state NEW
  162. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8888 state NEW
  163. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:631 state NEW
  164. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:587 state NEW
  165. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:993 state NEW
  166. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:110 state NEW
  167. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:143 state NEW
  168. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:995 state NEW
  169. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:4190 state NEW
  170. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 state NEW
  171. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:465 state NEW
  172. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:20 state NEW
  173. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 state NEW
  174. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:389 state NEW
  175. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:6677 state NEW
  176. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 state NEW
  177. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:442 state NEW
  178.  
  179. Chain iintservs (1 references)
  180. pkts bytes target prot opt in out source destination
  181.  
  182. Chain imodules (1 references)
  183. pkts bytes target prot opt in out source destination
  184.  
  185. Chain inoexternal (1 references)
  186. pkts bytes target prot opt in out source destination
  187.  
  188. Chain inointernal (0 references)
  189. pkts bytes target prot opt in out source destination
  190.  
  191. Chain inospoof (1 references)
  192. pkts bytes target prot opt in out source destination
  193. 1214 150625 inospoofmodules all -- * * 0.0.0.0/0 0.0.0.0/0
  194. 1210 149822 idrop all -- !eth0 * 192.168.1.0/24 0.0.0.0/0
  195. 0 0 idrop all -- !eth1 * 192.168.1.0/24 0.0.0.0/0
  196.  
  197. Chain inospoofmodules (1 references)
  198. pkts bytes target prot opt in out source destination
  199.  
  200. Chain log (0 references)
  201. pkts bytes target prot opt in out source destination
  202. 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
  203.  
  204. Chain odrop (2 references)
  205. pkts bytes target prot opt in out source destination
  206. 0 0 drop all -- * * 0.0.0.0/0 0.0.0.0/0
  207.  
  208. Chain oglobal (1 references)
  209. pkts bytes target prot opt in out source destination
  210. 127 23964 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
  211.  
  212. Chain ointernal (1 references)
  213. pkts bytes target prot opt in out source destination
  214. 259 17056 ACCEPT udp -- * * 0.0.0.0/0 192.168.1.150 state NEW udp dpt:53
  215. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 192.168.1.150 state NEW tcp dpt:53
  216. 109 6870 ACCEPT udp -- * * 0.0.0.0/0 68.105.28.12 state NEW udp dpt:53
  217. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 68.105.28.12 state NEW tcp dpt:53
  218. 30 1896 ACCEPT udp -- * * 0.0.0.0/0 68.105.29.11 state NEW udp dpt:53
  219. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 68.105.29.11 state NEW tcp dpt:53
  220. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:53
  221. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:53
  222.  
  223. Chain omodules (1 references)
  224. pkts bytes target prot opt in out source destination
  225. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:25
  226. 105 6300 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80
  227. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:137
  228. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:137
  229. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:137
  230. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:137
  231. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:138
  232. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:138
  233. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:138
  234. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:138
  235. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:139
  236. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:139
  237. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:139
  238. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:139
  239. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:445
  240. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:445
  241. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:445
  242. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:445
  243. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:137
  244. 8 624 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:137
  245. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:137
  246. 0 0 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:137
  247. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:138
  248. 12 2916 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:138
  249. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:138
  250. 0 0 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:138
  251. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:139
  252. 0 0 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:139
  253. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:139
  254. 0 0 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:139
  255. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:445
  256. 0 0 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:445
  257. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:445
  258. 0 0 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:445
  259. charles@ZentyalCJ:~$ sudo iptables -L -n -v -x
  260. Chain INPUT (policy DROP 3 packets, 2984 bytes)
  261. pkts bytes target prot opt in out source destination
  262. 7274 686678 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
  263. 1 40 idrop all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
  264. 3832 3050431 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
  265. 1371 172879 inospoof all -- * * 0.0.0.0/0 0.0.0.0/0
  266. 5 1131 iexternalmodules all -- * * 0.0.0.0/0 0.0.0.0/0
  267. 5 1131 iexternal all -- * * 0.0.0.0/0 0.0.0.0/0
  268. 5 1131 inoexternal all -- * * 0.0.0.0/0 0.0.0.0/0
  269. 5 1131 imodules all -- * * 0.0.0.0/0 0.0.0.0/0
  270. 5 1131 iintservs all -- * * 0.0.0.0/0 0.0.0.0/0
  271. 5 1131 iglobal all -- * * 0.0.0.0/0 0.0.0.0/0
  272. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 8 state NEW
  273. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 0 state NEW
  274. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 3 state NEW
  275. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 4 state NEW
  276. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 11 state NEW
  277. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 12 state NEW
  278. 1 78 idrop all -- * * 0.0.0.0/0 0.0.0.0/0
  279.  
  280. Chain FORWARD (policy DROP 0 packets, 0 bytes)
  281. pkts bytes target prot opt in out source destination
  282. 0 0 fdrop all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
  283. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
  284. 0 0 fnospoof all -- * * 0.0.0.0/0 0.0.0.0/0
  285. 0 0 fredirects all -- * * 0.0.0.0/0 0.0.0.0/0
  286. 0 0 fmodules all -- * * 0.0.0.0/0 0.0.0.0/0
  287. 0 0 ffwdrules all -- * * 0.0.0.0/0 0.0.0.0/0
  288. 0 0 fnoexternal all -- * * 0.0.0.0/0 0.0.0.0/0
  289. 0 0 fdns all -- * * 0.0.0.0/0 0.0.0.0/0
  290. 0 0 fobjects all -- * * 0.0.0.0/0 0.0.0.0/0
  291. 0 0 fglobal all -- * * 0.0.0.0/0 0.0.0.0/0
  292. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 8 state NEW
  293. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 0 state NEW
  294. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 3 state NEW
  295. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 4 state NEW
  296. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 11 state NEW
  297. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 12 state NEW
  298. 0 0 fdrop all -- * * 0.0.0.0/0 0.0.0.0/0
  299.  
  300. Chain OUTPUT (policy DROP 0 packets, 0 bytes)
  301. pkts bytes target prot opt in out source destination
  302. 7274 686678 ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0
  303. 0 0 odrop all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
  304. 3352 932188 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
  305. 706 65432 ointernal all -- * * 0.0.0.0/0 0.0.0.0/0
  306. 272 37348 omodules all -- * * 0.0.0.0/0 0.0.0.0/0
  307. 145 27388 oglobal all -- * * 0.0.0.0/0 0.0.0.0/0
  308. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 8 state NEW
  309. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 0 state NEW
  310. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 3 state NEW
  311. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 4 state NEW
  312. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 11 state NEW
  313. 0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0 icmp type 12 state NEW
  314. 0 0 odrop all -- * * 0.0.0.0/0 0.0.0.0/0
  315.  
  316. Chain drop (11 references)
  317. pkts bytes target prot opt in out source destination
  318. 1367 171788 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  319.  
  320. Chain fdns (1 references)
  321. pkts bytes target prot opt in out source destination
  322. 0 0 ACCEPT udp -- * * 0.0.0.0/0 192.168.1.150 state NEW udp dpt:53
  323. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 192.168.1.150 state NEW tcp dpt:53
  324. 0 0 ACCEPT udp -- * * 0.0.0.0/0 68.105.28.12 state NEW udp dpt:53
  325. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 68.105.28.12 state NEW tcp dpt:53
  326. 0 0 ACCEPT udp -- * * 0.0.0.0/0 68.105.29.11 state NEW udp dpt:53
  327. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 68.105.29.11 state NEW tcp dpt:53
  328.  
  329. Chain fdrop (5 references)
  330. pkts bytes target prot opt in out source destination
  331. 0 0 drop all -- * * 0.0.0.0/0 0.0.0.0/0
  332.  
  333. Chain ffwdrules (1 references)
  334. pkts bytes target prot opt in out source destination
  335. 0 0 RETURN all -- eth0 * 0.0.0.0/0 0.0.0.0/0
  336. 0 0 RETURN all -- eth1 * 0.0.0.0/0 0.0.0.0/0
  337. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  338.  
  339. Chain fglobal (1 references)
  340. pkts bytes target prot opt in out source destination
  341. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  342. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
  343. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
  344.  
  345. Chain fmodules (1 references)
  346. pkts bytes target prot opt in out source destination
  347.  
  348. Chain fnoexternal (1 references)
  349. pkts bytes target prot opt in out source destination
  350.  
  351. Chain fnospoof (1 references)
  352. pkts bytes target prot opt in out source destination
  353. 0 0 fnospoofmodules all -- * * 0.0.0.0/0 0.0.0.0/0
  354. 0 0 fdrop all -- !eth0 * 192.168.1.0/24 0.0.0.0/0
  355. 0 0 fdrop all -- !eth1 * 192.168.1.0/24 0.0.0.0/0
  356.  
  357. Chain fnospoofmodules (1 references)
  358. pkts bytes target prot opt in out source destination
  359.  
  360. Chain fobjects (1 references)
  361. pkts bytes target prot opt in out source destination
  362.  
  363. Chain fredirects (1 references)
  364. pkts bytes target prot opt in out source destination
  365.  
  366. Chain ftoexternalonly (0 references)
  367. pkts bytes target prot opt in out source destination
  368. 0 0 fdrop all -- * * 0.0.0.0/0 0.0.0.0/0
  369.  
  370. Chain idrop (4 references)
  371. pkts bytes target prot opt in out source destination
  372. 1368 171866 drop all -- * * 0.0.0.0/0 0.0.0.0/0
  373.  
  374. Chain iexternal (1 references)
  375. pkts bytes target prot opt in out source destination
  376. 0 0 RETURN all -- eth0 * 0.0.0.0/0 0.0.0.0/0
  377. 4 1053 RETURN all -- eth1 * 0.0.0.0/0 0.0.0.0/0
  378. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
  379. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:20 state NEW
  380. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 state NEW
  381. 0 0 ACCEPT 47 -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
  382. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1723 state NEW
  383. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:587 state NEW
  384. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:993 state NEW
  385. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:110 state NEW
  386. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:143 state NEW
  387. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:995 state NEW
  388. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:4190 state NEW
  389. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 state NEW
  390. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:465 state NEW
  391.  
  392. Chain iexternalmodules (1 references)
  393. pkts bytes target prot opt in out source destination
  394. 0 0 RETURN all -- eth0 * 0.0.0.0/0 0.0.0.0/0
  395. 4 1053 RETURN all -- eth1 * 0.0.0.0/0 0.0.0.0/0
  396.  
  397. Chain iglobal (1 references)
  398. pkts bytes target prot opt in out source destination
  399. 4 1053 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
  400. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:67 state NEW
  401. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:69 state NEW
  402. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:138 state NEW
  403. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:138 state NEW
  404. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:139 state NEW
  405. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:139 state NEW
  406. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:445 state NEW
  407. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:445 state NEW
  408. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:137 state NEW
  409. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:137 state NEW
  410. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:53 state NEW
  411. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 state NEW
  412. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:20 state NEW
  413. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 state NEW
  414. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
  415. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
  416. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:123 state NEW
  417. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 state NEW
  418. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 state NEW
  419. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8888 state NEW
  420. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:631 state NEW
  421. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:587 state NEW
  422. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:993 state NEW
  423. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:110 state NEW
  424. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:143 state NEW
  425. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:995 state NEW
  426. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:4190 state NEW
  427. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 state NEW
  428. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:465 state NEW
  429. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:20 state NEW
  430. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 state NEW
  431. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:389 state NEW
  432. 0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:6677 state NEW
  433. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 state NEW
  434. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:442 state NEW
  435.  
  436. Chain iintservs (1 references)
  437. pkts bytes target prot opt in out source destination
  438.  
  439. Chain imodules (1 references)
  440. pkts bytes target prot opt in out source destination
  441.  
  442. Chain inoexternal (1 references)
  443. pkts bytes target prot opt in out source destination
  444.  
  445. Chain inointernal (0 references)
  446. pkts bytes target prot opt in out source destination
  447.  
  448. Chain inospoof (1 references)
  449. pkts bytes target prot opt in out source destination
  450. 1371 172879 inospoofmodules all -- * * 0.0.0.0/0 0.0.0.0/0
  451. 1366 171748 idrop all -- !eth0 * 192.168.1.0/24 0.0.0.0/0
  452. 0 0 idrop all -- !eth1 * 192.168.1.0/24 0.0.0.0/0
  453.  
  454. Chain inospoofmodules (1 references)
  455. pkts bytes target prot opt in out source destination
  456.  
  457. Chain log (0 references)
  458. pkts bytes target prot opt in out source destination
  459. 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
  460.  
  461. Chain odrop (2 references)
  462. pkts bytes target prot opt in out source destination
  463. 0 0 drop all -- * * 0.0.0.0/0 0.0.0.0/0
  464.  
  465. Chain oglobal (1 references)
  466. pkts bytes target prot opt in out source destination
  467. 145 27388 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
  468.  
  469. Chain ointernal (1 references)
  470. pkts bytes target prot opt in out source destination
  471. 280 18417 ACCEPT udp -- * * 0.0.0.0/0 192.168.1.150 state NEW udp dpt:53
  472. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 192.168.1.150 state NEW tcp dpt:53
  473. 119 7465 ACCEPT udp -- * * 0.0.0.0/0 68.105.28.12 state NEW udp dpt:53
  474. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 68.105.28.12 state NEW tcp dpt:53
  475. 35 2202 ACCEPT udp -- * * 0.0.0.0/0 68.105.29.11 state NEW udp dpt:53
  476. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 68.105.29.11 state NEW tcp dpt:53
  477. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:53
  478. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:53
  479.  
  480. Chain omodules (1 references)
  481. pkts bytes target prot opt in out source destination
  482. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:25
  483. 107 6420 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80
  484. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:137
  485. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:137
  486. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:137
  487. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:137
  488. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:138
  489. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:138
  490. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:138
  491. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:138
  492. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:139
  493. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:139
  494. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:139
  495. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:139
  496. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:445
  497. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:445
  498. 0 0 ACCEPT tcp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:445
  499. 0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:445
  500. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:137
  501. 8 624 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:137
  502. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:137
  503. 0 0 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:137
  504. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:138
  505. 12 2916 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:138
  506. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:138
  507. 0 0 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:138
  508. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:139
  509. 0 0 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:139
  510. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:139
  511. 0 0 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:139
  512. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp spt:445
  513. 0 0 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp spt:445
  514. 0 0 ACCEPT tcp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:445
  515. 0 0 ACCEPT udp -- * eth1 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:445
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!