API tools faq
paste
AhmedSuror

iptable-save

AhmedSuror
Jun 22nd, 2021
698
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 28.18 KB | None | 0 0
raw download clone embed print report
  1. # Generated by iptables-save v1.8.4 on Wed Jun 23 01:28:14 2021
  2. *filter
  3. :INPUT DROP [1419:84689]
  4. :FORWARD DROP [0:0]
  5. :OUTPUT DROP [630:53805]
  6. :LOGDROPIN - [0:0]
  7. :LOGDROPOUT - [0:0]
  8. :DENYIN - [0:0]
  9. :DENYOUT - [0:0]
  10. :ALLOWIN - [0:0]
  11. :ALLOWOUT - [0:0]
  12. :LOCALINPUT - [0:0]
  13. :LOCALOUTPUT - [0:0]
  14. :INVDROP - [0:0]
  15. :INVALID - [0:0]
  16. -A INPUT -s 8.8.8.8/32 ! -i lo -p tcp -m tcp --dport 53 -j ACCEPT
  17. -A INPUT -s 8.8.8.8/32 ! -i lo -p udp -m udp --dport 53 -j ACCEPT
  18. -A INPUT -s 8.8.8.8/32 ! -i lo -p tcp -m tcp --sport 53 -j ACCEPT
  19. -A INPUT -s 8.8.8.8/32 ! -i lo -p udp -m udp --sport 53 -j ACCEPT
  20. -A INPUT ! -i lo -j LOCALINPUT
  21. -A INPUT -i lo -j ACCEPT
  22. -A INPUT ! -i lo -p icmp -m icmp --icmp-type 8 -m limit --limit 1/sec -j ACCEPT
  23. -A INPUT ! -i lo -p icmp -j ACCEPT
  24. -A INPUT ! -i lo -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
  25. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 20 -j ACCEPT
  26. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 21 -j ACCEPT
  27. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 7190 -j ACCEPT
  28. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 25 -j ACCEPT
  29. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 53 -j ACCEPT
  30. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 80 -j ACCEPT
  31. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 110 -j ACCEPT
  32. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 143 -j ACCEPT
  33. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 443 -j ACCEPT
  34. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 465 -j ACCEPT
  35. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 587 -j ACCEPT
  36. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 993 -j ACCEPT
  37. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 995 -j ACCEPT
  38. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2030 -j ACCEPT
  39. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2031 -j ACCEPT
  40. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2082 -j ACCEPT
  41. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2083 -j ACCEPT
  42. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2086 -j ACCEPT
  43. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2087 -j ACCEPT
  44. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2095 -j ACCEPT
  45. -A INPUT ! -i lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2096 -j ACCEPT
  46. -A INPUT ! -i lo -p udp -m conntrack --ctstate NEW -m udp --dport 20 -j ACCEPT
  47. -A INPUT ! -i lo -p udp -m conntrack --ctstate NEW -m udp --dport 21 -j ACCEPT
  48. -A INPUT ! -i lo -p udp -m conntrack --ctstate NEW -m udp --dport 53 -j ACCEPT
  49. -A INPUT ! -i lo -p udp -m conntrack --ctstate NEW -m udp --dport 80 -j ACCEPT
  50. -A INPUT ! -i lo -p udp -m conntrack --ctstate NEW -m udp --dport 443 -j ACCEPT
  51. -A OUTPUT -d 8.8.8.8/32 ! -o lo -p tcp -m tcp --dport 53 -j ACCEPT
  52. -A OUTPUT -d 8.8.8.8/32 ! -o lo -p udp -m udp --dport 53 -j ACCEPT
  53. -A OUTPUT -d 8.8.8.8/32 ! -o lo -p tcp -m tcp --sport 53 -j ACCEPT
  54. -A OUTPUT -d 8.8.8.8/32 ! -o lo -p udp -m udp --sport 53 -j ACCEPT
  55. -A OUTPUT ! -o lo -p tcp -m tcp --dport 53 -j ACCEPT
  56. -A OUTPUT ! -o lo -p udp -m udp --dport 53 -j ACCEPT
  57. -A OUTPUT ! -o lo -p tcp -m tcp --sport 53 -j ACCEPT
  58. -A OUTPUT ! -o lo -p udp -m udp --sport 53 -j ACCEPT
  59. -A OUTPUT -o lo -j ACCEPT
  60. -A OUTPUT ! -o lo -p icmp -j ACCEPT
  61. -A OUTPUT ! -o lo -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
  62. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 20 -j ACCEPT
  63. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 21 -j ACCEPT
  64. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 7190 -j ACCEPT
  65. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 25 -j ACCEPT
  66. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 53 -j ACCEPT
  67. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 80 -j ACCEPT
  68. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 110 -j ACCEPT
  69. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 113 -j ACCEPT
  70. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 443 -j ACCEPT
  71. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2030 -j ACCEPT
  72. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2031 -j ACCEPT
  73. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2082 -j ACCEPT
  74. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2083 -j ACCEPT
  75. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2086 -j ACCEPT
  76. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2087 -j ACCEPT
  77. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2095 -j ACCEPT
  78. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2096 -j ACCEPT
  79. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 587 -j ACCEPT
  80. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 993 -j ACCEPT
  81. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 995 -j ACCEPT
  82. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2080 -j ACCEPT
  83. -A OUTPUT ! -o lo -p tcp -m conntrack --ctstate NEW -m tcp --dport 2443 -j ACCEPT
  84. -A OUTPUT ! -o lo -p udp -m conntrack --ctstate NEW -m udp --dport 20 -j ACCEPT
  85. -A OUTPUT ! -o lo -p udp -m conntrack --ctstate NEW -m udp --dport 21 -j ACCEPT
  86. -A OUTPUT ! -o lo -p udp -m conntrack --ctstate NEW -m udp --dport 53 -j ACCEPT
  87. -A OUTPUT ! -o lo -p udp -m conntrack --ctstate NEW -m udp --dport 113 -j ACCEPT
  88. -A OUTPUT ! -o lo -p udp -m conntrack --ctstate NEW -m udp --dport 123 -j ACCEPT
  89. -A LOGDROPIN -p tcp -m tcp --dport 23 -j DROP
  90. -A LOGDROPIN -p udp -m udp --dport 23 -j DROP
  91. -A LOGDROPIN -p tcp -m tcp --dport 67 -j DROP
  92. -A LOGDROPIN -p udp -m udp --dport 67 -j DROP
  93. -A LOGDROPIN -p tcp -m tcp --dport 68 -j DROP
  94. -A LOGDROPIN -p udp -m udp --dport 68 -j DROP
  95. -A LOGDROPIN -p tcp -m tcp --dport 111 -j DROP
  96. -A LOGDROPIN -p udp -m udp --dport 111 -j DROP
  97. -A LOGDROPIN -p tcp -m tcp --dport 113 -j DROP
  98. -A LOGDROPIN -p udp -m udp --dport 113 -j DROP
  99. -A LOGDROPIN -p tcp -m tcp --dport 135:139 -j DROP
  100. -A LOGDROPIN -p udp -m udp --dport 135:139 -j DROP
  101. -A LOGDROPIN -p tcp -m tcp --dport 445 -j DROP
  102. -A LOGDROPIN -p udp -m udp --dport 445 -j DROP
  103. -A LOGDROPIN -p tcp -m tcp --dport 500 -j DROP
  104. -A LOGDROPIN -p udp -m udp --dport 500 -j DROP
  105. -A LOGDROPIN -p tcp -m tcp --dport 513 -j DROP
  106. -A LOGDROPIN -p udp -m udp --dport 513 -j DROP
  107. -A LOGDROPIN -p tcp -m tcp --dport 520 -j DROP
  108. -A LOGDROPIN -p udp -m udp --dport 520 -j DROP
  109. -A LOGDROPIN -p tcp -m limit --limit 30/min -j LOG --log-prefix "Firewall: *TCP_IN Blocked* "
  110. -A LOGDROPIN -p udp -m limit --limit 30/min -j LOG --log-prefix "Firewall: *UDP_IN Blocked* "
  111. -A LOGDROPIN -p icmp -m limit --limit 30/min -j LOG --log-prefix "Firewall: *ICMP_IN Blocked* "
  112. -A LOGDROPIN -j DROP
  113. -A LOGDROPOUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m limit --limit 30/min -j LOG --log-prefix "Firewall: *TCP_OUT Blocked* " --log-uid
  114. -A LOGDROPOUT -p udp -m limit --limit 30/min -j LOG --log-prefix "Firewall: *UDP_OUT Blocked* " --log-uid
  115. -A LOGDROPOUT -p icmp -m limit --limit 30/min -j LOG --log-prefix "Firewall: *ICMP_OUT Blocked* " --log-uid
  116. -A LOGDROPOUT -j REJECT --reject-with icmp-port-unreachable
  117. -A DENYIN -s 87.241.1.186/32 ! -i lo -j DROP
  118. -A DENYIN -s 142.93.1.103/32 ! -i lo -j DROP
  119. -A DENYIN -s 112.85.42.176/32 ! -i lo -j DROP
  120. -A DENYIN -s 112.85.42.183/32 ! -i lo -j DROP
  121. -A DENYIN -s 112.85.42.53/32 ! -i lo -j DROP
  122. -A DENYIN -s 218.92.0.247/32 ! -i lo -j DROP
  123. -A DENYIN -s 218.92.0.251/32 ! -i lo -j DROP
  124. -A DENYIN -s 218.92.0.249/32 ! -i lo -j DROP
  125. -A DENYIN -s 218.92.0.246/32 ! -i lo -j DROP
  126. -A DENYIN -s 61.177.172.168/32 ! -i lo -j DROP
  127. -A DENYIN -s 122.194.229.54/32 ! -i lo -j DROP
  128. -A DENYIN -s 112.85.42.180/32 ! -i lo -j DROP
  129. -A DENYIN -s 61.177.172.142/32 ! -i lo -j DROP
  130. -A DENYIN -s 112.85.42.112/32 ! -i lo -j DROP
  131. -A DENYIN -s 218.92.0.171/32 ! -i lo -j DROP
  132. -A DENYIN -s 218.92.0.173/32 ! -i lo -j DROP
  133. -A DENYIN -s 112.85.42.196/32 ! -i lo -j DROP
  134. -A DENYIN -s 61.177.172.61/32 ! -i lo -j DROP
  135. -A DENYIN -s 112.85.42.96/32 ! -i lo -j DROP
  136. -A DENYIN -s 112.85.42.47/32 ! -i lo -j DROP
  137. -A DENYIN -s 112.85.42.200/32 ! -i lo -j DROP
  138. -A DENYIN -s 218.92.0.158/32 ! -i lo -j DROP
  139. -A DENYIN -s 61.177.172.104/32 ! -i lo -j DROP
  140. -A DENYIN -s 112.85.42.184/32 ! -i lo -j DROP
  141. -A DENYIN -s 218.92.0.172/32 ! -i lo -j DROP
  142. -A DENYIN -s 112.85.42.98/32 ! -i lo -j DROP
  143. -A DENYIN -s 218.92.0.145/32 ! -i lo -j DROP
  144. -A DENYIN -s 218.92.0.184/32 ! -i lo -j DROP
  145. -A DENYIN -s 218.92.0.250/32 ! -i lo -j DROP
  146. -A DENYIN -s 61.177.172.54/32 ! -i lo -j DROP
  147. -A DENYIN -s 112.85.42.81/32 ! -i lo -j DROP
  148. -A DENYIN -s 218.92.0.165/32 ! -i lo -j DROP
  149. -A DENYIN -s 218.92.0.212/32 ! -i lo -j DROP
  150. -A DENYIN -s 218.92.0.175/32 ! -i lo -j DROP
  151. -A DENYIN -s 112.85.42.181/32 ! -i lo -j DROP
  152. -A DENYIN -s 112.85.42.151/32 ! -i lo -j DROP
  153. -A DENYIN -s 218.92.0.185/32 ! -i lo -j DROP
  154. -A DENYIN -s 122.194.229.122/32 ! -i lo -j DROP
  155. -A DENYIN -s 218.92.0.133/32 ! -i lo -j DROP
  156. -A DENYIN -s 61.177.172.177/32 ! -i lo -j DROP
  157. -A DENYIN -s 218.92.0.138/32 ! -i lo -j DROP
  158. -A DENYIN -s 112.85.42.230/32 ! -i lo -j DROP
  159. -A DENYIN -s 81.161.63.253/32 ! -i lo -j DROP
  160. -A DENYIN -s 112.85.42.119/32 ! -i lo -j DROP
  161. -A DENYIN -s 112.85.42.172/32 ! -i lo -j DROP
  162. -A DENYIN -s 112.85.42.13/32 ! -i lo -j DROP
  163. -A DENYIN -s 112.85.42.120/32 ! -i lo -j DROP
  164. -A DENYIN -s 112.85.42.174/32 ! -i lo -j DROP
  165. -A DENYIN -s 61.177.172.107/32 ! -i lo -j DROP
  166. -A DENYIN -s 122.194.229.59/32 ! -i lo -j DROP
  167. -A DENYIN -s 112.85.42.122/32 ! -i lo -j DROP
  168. -A DENYIN -s 218.92.0.223/32 ! -i lo -j DROP
  169. -A DENYIN -s 112.85.42.85/32 ! -i lo -j DROP
  170. -A DENYIN -s 218.92.0.248/32 ! -i lo -j DROP
  171. -A DENYIN -s 112.85.42.110/32 ! -i lo -j DROP
  172. -A DENYIN -s 112.85.42.89/32 ! -i lo -j DROP
  173. -A DENYIN -s 104.248.63.105/32 ! -i lo -j DROP
  174. -A DENYIN -s 68.183.228.104/32 ! -i lo -j DROP
  175. -A DENYIN -s 209.141.54.239/32 ! -i lo -j DROP
  176. -A DENYIN -s 87.246.7.139/32 ! -i lo -j DROP
  177. -A DENYIN -s 220.93.216.119/32 ! -i lo -j DROP
  178. -A DENYIN -s 36.89.148.249/32 ! -i lo -j DROP
  179. -A DENYIN -s 45.168.34.83/32 ! -i lo -j DROP
  180. -A DENYIN -s 116.178.28.2/32 ! -i lo -j DROP
  181. -A DENYIN -s 35.130.112.58/32 ! -i lo -j DROP
  182. -A DENYIN -s 112.140.185.246/32 ! -i lo -j DROP
  183. -A DENYIN -s 68.183.72.188/32 ! -i lo -j DROP
  184. -A DENYIN -s 103.99.2.67/32 ! -i lo -j DROP
  185. -A DENYIN -s 194.105.205.42/32 ! -i lo -j DROP
  186. -A DENYIN -s 218.92.0.211/32 ! -i lo -j DROP
  187. -A DENYIN -s 87.246.7.42/32 ! -i lo -j DROP
  188. -A DENYIN -s 45.142.120.90/32 ! -i lo -j DROP
  189. -A DENYIN -s 45.142.120.200/32 ! -i lo -j DROP
  190. -A DENYIN -s 45.142.120.15/32 ! -i lo -j DROP
  191. -A DENYIN -s 45.142.120.58/32 ! -i lo -j DROP
  192. -A DENYIN -s 45.142.120.38/32 ! -i lo -j DROP
  193. -A DENYIN -s 45.142.120.183/32 ! -i lo -j DROP
  194. -A DENYIN -s 45.142.120.31/32 ! -i lo -j DROP
  195. -A DENYIN -s 45.142.120.37/32 ! -i lo -j DROP
  196. -A DENYIN -s 45.142.120.166/32 ! -i lo -j DROP
  197. -A DENYIN -s 45.142.120.84/32 ! -i lo -j DROP
  198. -A DENYIN -s 45.142.120.79/32 ! -i lo -j DROP
  199. -A DENYIN -s 45.142.120.54/32 ! -i lo -j DROP
  200. -A DENYIN -s 45.142.120.53/32 ! -i lo -j DROP
  201. -A DENYIN -s 45.142.120.39/32 ! -i lo -j DROP
  202. -A DENYIN -s 45.142.120.56/32 ! -i lo -j DROP
  203. -A DENYIN -s 45.142.120.52/32 ! -i lo -j DROP
  204. -A DENYIN -s 45.142.120.74/32 ! -i lo -j DROP
  205. -A DENYIN -s 45.142.120.55/32 ! -i lo -j DROP
  206. -A DENYIN -s 45.142.120.51/32 ! -i lo -j DROP
  207. -A DENYIN -s 45.142.120.137/32 ! -i lo -j DROP
  208. -A DENYIN -s 45.142.120.192/32 ! -i lo -j DROP
  209. -A DENYIN -s 45.142.120.32/32 ! -i lo -j DROP
  210. -A DENYIN -s 45.142.120.35/32 ! -i lo -j DROP
  211. -A DENYIN -s 45.142.120.135/32 ! -i lo -j DROP
  212. -A DENYIN -s 45.142.120.62/32 ! -i lo -j DROP
  213. -A DENYIN -s 45.142.120.93/32 ! -i lo -j DROP
  214. -A DENYIN -s 45.142.120.180/32 ! -i lo -j DROP
  215. -A DENYIN -s 45.142.120.147/32 ! -i lo -j DROP
  216. -A DENYIN -s 45.142.120.209/32 ! -i lo -j DROP
  217. -A DENYIN -s 45.142.120.99/32 ! -i lo -j DROP
  218. -A DENYIN -s 45.142.120.215/32 ! -i lo -j DROP
  219. -A DENYIN -s 45.142.120.133/32 ! -i lo -j DROP
  220. -A DENYIN -s 45.142.120.121/32 ! -i lo -j DROP
  221. -A DENYIN -s 45.142.120.60/32 ! -i lo -j DROP
  222. -A DENYIN -s 45.142.120.149/32 ! -i lo -j DROP
  223. -A DENYIN -s 45.142.120.59/32 ! -i lo -j DROP
  224. -A DENYIN -s 45.142.120.11/32 ! -i lo -j DROP
  225. -A DENYIN -s 45.142.120.57/32 ! -i lo -j DROP
  226. -A DENYIN -s 45.142.120.87/32 ! -i lo -j DROP
  227. -A DENYIN -s 45.142.120.65/32 ! -i lo -j DROP
  228. -A DENYIN -s 45.142.120.138/32 ! -i lo -j DROP
  229. -A DENYIN -s 45.142.120.63/32 ! -i lo -j DROP
  230. -A DENYIN -s 45.142.120.34/32 ! -i lo -j DROP
  231. -A DENYIN -s 45.142.120.82/32 ! -i lo -j DROP
  232. -A DENYIN -s 45.142.120.20/32 ! -i lo -j DROP
  233. -A DENYIN -s 111.230.228.235/32 ! -i lo -j DROP
  234. -A DENYIN -s 185.234.216.63/32 ! -i lo -j DROP
  235. -A DENYIN -s 128.199.195.139/32 ! -i lo -j DROP
  236. -A DENYIN -s 185.234.219.14/32 ! -i lo -j DROP
  237. -A DENYIN -s 185.234.218.85/32 ! -i lo -j DROP
  238. -A DENYIN -s 185.234.218.84/32 ! -i lo -j DROP
  239. -A DENYIN -s 212.70.149.70/32 ! -i lo -j DROP
  240. -A DENYIN -s 212.70.149.85/32 ! -i lo -j DROP
  241. -A DENYIN -s 212.70.149.54/32 ! -i lo -j DROP
  242. -A DENYIN -s 193.169.254.43/32 ! -i lo -j DROP
  243. -A DENYIN -s 193.169.254.41/32 ! -i lo -j DROP
  244. -A DENYIN -s 193.169.254.42/32 ! -i lo -j DROP
  245. -A DENYIN -s 193.169.254.39/32 ! -i lo -j DROP
  246. -A DENYIN -s 193.169.254.5/32 ! -i lo -j DROP
  247. -A DENYIN -s 193.169.254.8/32 ! -i lo -j DROP
  248. -A DENYIN -s 193.169.254.7/32 ! -i lo -j DROP
  249. -A DENYIN -s 185.234.219.230/32 ! -i lo -j DROP
  250. -A DENYIN -s 185.234.219.12/32 ! -i lo -j DROP
  251. -A DENYIN -s 185.234.219.13/32 ! -i lo -j DROP
  252. -A DENYIN -s 185.234.219.229/32 ! -i lo -j DROP
  253. -A DENYIN -s 185.234.219.227/32 ! -i lo -j DROP
  254. -A DENYIN -s 185.234.219.11/32 ! -i lo -j DROP
  255. -A DENYIN -s 185.234.219.228/32 ! -i lo -j DROP
  256. -A DENYIN -s 112.35.79.100/32 ! -i lo -j DROP
  257. -A DENYIN -s 193.169.253.136/32 ! -i lo -j DROP
  258. -A DENYIN -s 193.169.253.178/32 ! -i lo -j DROP
  259. -A DENYIN -s 193.169.253.52/32 ! -i lo -j DROP
  260. -A DENYIN -s 190.85.102.124/32 ! -i lo -j DROP
  261. -A DENYIN -s 193.169.253.128/32 ! -i lo -j DROP
  262. -A DENYIN -s 37.46.150.239/32 ! -i lo -j DROP
  263. -A DENYIN -s 193.169.253.49/32 ! -i lo -j DROP
  264. -A DENYIN -s 193.169.253.137/32 ! -i lo -j DROP
  265. -A DENYIN -s 45.125.65.105/32 ! -i lo -j DROP
  266. -A DENYIN -s 103.253.42.54/32 ! -i lo -j DROP
  267. -A DENYIN -s 141.98.10.183/32 ! -i lo -j DROP
  268. -A DENYIN -s 141.98.10.143/32 ! -i lo -j DROP
  269. -A DENYIN -s 141.98.10.136/32 ! -i lo -j DROP
  270. -A DENYIN -s 185.36.81.33/32 ! -i lo -j DROP
  271. -A DENYIN -s 45.125.65.39/32 ! -i lo -j DROP
  272. -A DENYIN -s 193.169.253.56/32 ! -i lo -j DROP
  273. -A DENYIN -s 193.169.253.48/32 ! -i lo -j DROP
  274. -A DENYIN -s 186.24.14.92/32 ! -i lo -j DROP
  275. -A DENYIN -s 193.169.253.118/32 ! -i lo -j DROP
  276. -A DENYIN -s 37.49.225.117/32 ! -i lo -j DROP
  277. -A DENYIN -s 59.34.233.229/32 ! -i lo -j DROP
  278. -A DENYIN -s 87.246.7.226/32 ! -i lo -j DROP
  279. -A DENYIN -s 87.246.7.242/32 ! -i lo -j DROP
  280. -A DENYIN -s 176.111.173.23/32 ! -i lo -j DROP
  281. -A DENYIN -s 87.246.7.243/32 ! -i lo -j DROP
  282. -A DENYIN -s 45.142.120.6/32 ! -i lo -j DROP
  283. -A DENYIN -s 45.142.120.13/32 ! -i lo -j DROP
  284. -A DENYIN -s 176.111.173.14/32 ! -i lo -j DROP
  285. -A DENYIN -s 45.40.196.167/32 ! -i lo -j DROP
  286. -A DENYIN -s 212.70.149.71/32 ! -i lo -j DROP
  287. -A DENYIN -s 193.56.29.45/32 ! -i lo -j DROP
  288. -A DENYIN -s 176.111.173.17/32 ! -i lo -j DROP
  289. -A DENYIN -s 212.70.149.55/32 ! -i lo -j DROP
  290. -A DENYIN -s 45.142.120.95/32 ! -i lo -j DROP
  291. -A DENYIN -s 45.142.120.16/32 ! -i lo -j DROP
  292. -A DENYIN -s 45.142.120.22/32 ! -i lo -j DROP
  293. -A DENYIN -s 45.142.120.132/32 ! -i lo -j DROP
  294. -A DENYIN -s 45.142.120.156/32 ! -i lo -j DROP
  295. -A DENYIN -s 45.142.120.104/32 ! -i lo -j DROP
  296. -A DENYIN -s 45.142.120.23/32 ! -i lo -j DROP
  297. -A DENYIN -s 45.142.120.233/32 ! -i lo -j DROP
  298. -A DENYIN -s 193.56.29.118/32 ! -i lo -j DROP
  299. -A DENYIN -s 45.142.120.8/32 ! -i lo -j DROP
  300. -A DENYIN -s 193.169.254.252/32 ! -i lo -j DROP
  301. -A DENYIN -s 193.169.252.9/32 ! -i lo -j DROP
  302. -A DENYIN -s 176.111.173.50/32 ! -i lo -j DROP
  303. -A DENYIN -s 193.169.254.233/32 ! -i lo -j DROP
  304. -A DENYIN -s 193.169.254.232/32 ! -i lo -j DROP
  305. -A DENYIN -s 176.111.173.48/32 ! -i lo -j DROP
  306. -A DENYIN -s 176.111.173.47/32 ! -i lo -j DROP
  307. -A DENYIN -s 193.169.254.251/32 ! -i lo -j DROP
  308. -A DENYIN -s 176.111.173.49/32 ! -i lo -j DROP
  309. -A DENYIN -s 193.169.254.231/32 ! -i lo -j DROP
  310. -A DENYIN -s 176.111.173.46/32 ! -i lo -j DROP
  311. -A DENYIN -s 193.169.252.8/32 ! -i lo -j DROP
  312. -A DENYIN -s 193.169.254.235/32 ! -i lo -j DROP
  313. -A DENYIN -s 193.169.254.250/32 ! -i lo -j DROP
  314. -A DENYIN -s 193.169.254.234/32 ! -i lo -j DROP
  315. -A DENYIN -s 103.147.184.193/32 ! -i lo -j DROP
  316. -A DENYIN -s 87.246.7.37/32 ! -i lo -j DROP
  317. -A DENYOUT -d 87.241.1.186/32 ! -o lo -j LOGDROPOUT
  318. -A DENYOUT -d 142.93.1.103/32 ! -o lo -j LOGDROPOUT
  319. -A DENYOUT -d 112.85.42.176/32 ! -o lo -j LOGDROPOUT
  320. -A DENYOUT -d 112.85.42.183/32 ! -o lo -j LOGDROPOUT
  321. -A DENYOUT -d 112.85.42.53/32 ! -o lo -j LOGDROPOUT
  322. -A DENYOUT -d 218.92.0.247/32 ! -o lo -j LOGDROPOUT
  323. -A DENYOUT -d 218.92.0.251/32 ! -o lo -j LOGDROPOUT
  324. -A DENYOUT -d 218.92.0.249/32 ! -o lo -j LOGDROPOUT
  325. -A DENYOUT -d 218.92.0.246/32 ! -o lo -j LOGDROPOUT
  326. -A DENYOUT -d 61.177.172.168/32 ! -o lo -j LOGDROPOUT
  327. -A DENYOUT -d 122.194.229.54/32 ! -o lo -j LOGDROPOUT
  328. -A DENYOUT -d 112.85.42.180/32 ! -o lo -j LOGDROPOUT
  329. -A DENYOUT -d 61.177.172.142/32 ! -o lo -j LOGDROPOUT
  330. -A DENYOUT -d 112.85.42.112/32 ! -o lo -j LOGDROPOUT
  331. -A DENYOUT -d 218.92.0.171/32 ! -o lo -j LOGDROPOUT
  332. -A DENYOUT -d 218.92.0.173/32 ! -o lo -j LOGDROPOUT
  333. -A DENYOUT -d 112.85.42.196/32 ! -o lo -j LOGDROPOUT
  334. -A DENYOUT -d 61.177.172.61/32 ! -o lo -j LOGDROPOUT
  335. -A DENYOUT -d 112.85.42.96/32 ! -o lo -j LOGDROPOUT
  336. -A DENYOUT -d 112.85.42.47/32 ! -o lo -j LOGDROPOUT
  337. -A DENYOUT -d 112.85.42.200/32 ! -o lo -j LOGDROPOUT
  338. -A DENYOUT -d 218.92.0.158/32 ! -o lo -j LOGDROPOUT
  339. -A DENYOUT -d 61.177.172.104/32 ! -o lo -j LOGDROPOUT
  340. -A DENYOUT -d 112.85.42.184/32 ! -o lo -j LOGDROPOUT
  341. -A DENYOUT -d 218.92.0.172/32 ! -o lo -j LOGDROPOUT
  342. -A DENYOUT -d 112.85.42.98/32 ! -o lo -j LOGDROPOUT
  343. -A DENYOUT -d 218.92.0.145/32 ! -o lo -j LOGDROPOUT
  344. -A DENYOUT -d 218.92.0.184/32 ! -o lo -j LOGDROPOUT
  345. -A DENYOUT -d 218.92.0.250/32 ! -o lo -j LOGDROPOUT
  346. -A DENYOUT -d 61.177.172.54/32 ! -o lo -j LOGDROPOUT
  347. -A DENYOUT -d 112.85.42.81/32 ! -o lo -j LOGDROPOUT
  348. -A DENYOUT -d 218.92.0.165/32 ! -o lo -j LOGDROPOUT
  349. -A DENYOUT -d 218.92.0.212/32 ! -o lo -j LOGDROPOUT
  350. -A DENYOUT -d 218.92.0.175/32 ! -o lo -j LOGDROPOUT
  351. -A DENYOUT -d 112.85.42.181/32 ! -o lo -j LOGDROPOUT
  352. -A DENYOUT -d 112.85.42.151/32 ! -o lo -j LOGDROPOUT
  353. -A DENYOUT -d 218.92.0.185/32 ! -o lo -j LOGDROPOUT
  354. -A DENYOUT -d 122.194.229.122/32 ! -o lo -j LOGDROPOUT
  355. -A DENYOUT -d 218.92.0.133/32 ! -o lo -j LOGDROPOUT
  356. -A DENYOUT -d 61.177.172.177/32 ! -o lo -j LOGDROPOUT
  357. -A DENYOUT -d 218.92.0.138/32 ! -o lo -j LOGDROPOUT
  358. -A DENYOUT -d 112.85.42.230/32 ! -o lo -j LOGDROPOUT
  359. -A DENYOUT -d 81.161.63.253/32 ! -o lo -j LOGDROPOUT
  360. -A DENYOUT -d 112.85.42.119/32 ! -o lo -j LOGDROPOUT
  361. -A DENYOUT -d 112.85.42.172/32 ! -o lo -j LOGDROPOUT
  362. -A DENYOUT -d 112.85.42.13/32 ! -o lo -j LOGDROPOUT
  363. -A DENYOUT -d 112.85.42.120/32 ! -o lo -j LOGDROPOUT
  364. -A DENYOUT -d 112.85.42.174/32 ! -o lo -j LOGDROPOUT
  365. -A DENYOUT -d 61.177.172.107/32 ! -o lo -j LOGDROPOUT
  366. -A DENYOUT -d 122.194.229.59/32 ! -o lo -j LOGDROPOUT
  367. -A DENYOUT -d 112.85.42.122/32 ! -o lo -j LOGDROPOUT
  368. -A DENYOUT -d 218.92.0.223/32 ! -o lo -j LOGDROPOUT
  369. -A DENYOUT -d 112.85.42.85/32 ! -o lo -j LOGDROPOUT
  370. -A DENYOUT -d 218.92.0.248/32 ! -o lo -j LOGDROPOUT
  371. -A DENYOUT -d 112.85.42.110/32 ! -o lo -j LOGDROPOUT
  372. -A DENYOUT -d 112.85.42.89/32 ! -o lo -j LOGDROPOUT
  373. -A DENYOUT -d 104.248.63.105/32 ! -o lo -j LOGDROPOUT
  374. -A DENYOUT -d 68.183.228.104/32 ! -o lo -j LOGDROPOUT
  375. -A DENYOUT -d 209.141.54.239/32 ! -o lo -j LOGDROPOUT
  376. -A DENYOUT -d 87.246.7.139/32 ! -o lo -j LOGDROPOUT
  377. -A DENYOUT -d 220.93.216.119/32 ! -o lo -j LOGDROPOUT
  378. -A DENYOUT -d 36.89.148.249/32 ! -o lo -j LOGDROPOUT
  379. -A DENYOUT -d 45.168.34.83/32 ! -o lo -j LOGDROPOUT
  380. -A DENYOUT -d 116.178.28.2/32 ! -o lo -j LOGDROPOUT
  381. -A DENYOUT -d 35.130.112.58/32 ! -o lo -j LOGDROPOUT
  382. -A DENYOUT -d 112.140.185.246/32 ! -o lo -j LOGDROPOUT
  383. -A DENYOUT -d 68.183.72.188/32 ! -o lo -j LOGDROPOUT
  384. -A DENYOUT -d 103.99.2.67/32 ! -o lo -j LOGDROPOUT
  385. -A DENYOUT -d 194.105.205.42/32 ! -o lo -j LOGDROPOUT
  386. -A DENYOUT -d 218.92.0.211/32 ! -o lo -j LOGDROPOUT
  387. -A DENYOUT -d 87.246.7.42/32 ! -o lo -j LOGDROPOUT
  388. -A DENYOUT -d 45.142.120.90/32 ! -o lo -j LOGDROPOUT
  389. -A DENYOUT -d 45.142.120.200/32 ! -o lo -j LOGDROPOUT
  390. -A DENYOUT -d 45.142.120.15/32 ! -o lo -j LOGDROPOUT
  391. -A DENYOUT -d 45.142.120.58/32 ! -o lo -j LOGDROPOUT
  392. -A DENYOUT -d 45.142.120.38/32 ! -o lo -j LOGDROPOUT
  393. -A DENYOUT -d 45.142.120.183/32 ! -o lo -j LOGDROPOUT
  394. -A DENYOUT -d 45.142.120.31/32 ! -o lo -j LOGDROPOUT
  395. -A DENYOUT -d 45.142.120.37/32 ! -o lo -j LOGDROPOUT
  396. -A DENYOUT -d 45.142.120.166/32 ! -o lo -j LOGDROPOUT
  397. -A DENYOUT -d 45.142.120.84/32 ! -o lo -j LOGDROPOUT
  398. -A DENYOUT -d 45.142.120.79/32 ! -o lo -j LOGDROPOUT
  399. -A DENYOUT -d 45.142.120.54/32 ! -o lo -j LOGDROPOUT
  400. -A DENYOUT -d 45.142.120.53/32 ! -o lo -j LOGDROPOUT
  401. -A DENYOUT -d 45.142.120.39/32 ! -o lo -j LOGDROPOUT
  402. -A DENYOUT -d 45.142.120.56/32 ! -o lo -j LOGDROPOUT
  403. -A DENYOUT -d 45.142.120.52/32 ! -o lo -j LOGDROPOUT
  404. -A DENYOUT -d 45.142.120.74/32 ! -o lo -j LOGDROPOUT
  405. -A DENYOUT -d 45.142.120.55/32 ! -o lo -j LOGDROPOUT
  406. -A DENYOUT -d 45.142.120.51/32 ! -o lo -j LOGDROPOUT
  407. -A DENYOUT -d 45.142.120.137/32 ! -o lo -j LOGDROPOUT
  408. -A DENYOUT -d 45.142.120.192/32 ! -o lo -j LOGDROPOUT
  409. -A DENYOUT -d 45.142.120.32/32 ! -o lo -j LOGDROPOUT
  410. -A DENYOUT -d 45.142.120.35/32 ! -o lo -j LOGDROPOUT
  411. -A DENYOUT -d 45.142.120.135/32 ! -o lo -j LOGDROPOUT
  412. -A DENYOUT -d 45.142.120.62/32 ! -o lo -j LOGDROPOUT
  413. -A DENYOUT -d 45.142.120.93/32 ! -o lo -j LOGDROPOUT
  414. -A DENYOUT -d 45.142.120.180/32 ! -o lo -j LOGDROPOUT
  415. -A DENYOUT -d 45.142.120.147/32 ! -o lo -j LOGDROPOUT
  416. -A DENYOUT -d 45.142.120.209/32 ! -o lo -j LOGDROPOUT
  417. -A DENYOUT -d 45.142.120.99/32 ! -o lo -j LOGDROPOUT
  418. -A DENYOUT -d 45.142.120.215/32 ! -o lo -j LOGDROPOUT
  419. -A DENYOUT -d 45.142.120.133/32 ! -o lo -j LOGDROPOUT
  420. -A DENYOUT -d 45.142.120.121/32 ! -o lo -j LOGDROPOUT
  421. -A DENYOUT -d 45.142.120.60/32 ! -o lo -j LOGDROPOUT
  422. -A DENYOUT -d 45.142.120.149/32 ! -o lo -j LOGDROPOUT
  423. -A DENYOUT -d 45.142.120.59/32 ! -o lo -j LOGDROPOUT
  424. -A DENYOUT -d 45.142.120.11/32 ! -o lo -j LOGDROPOUT
  425. -A DENYOUT -d 45.142.120.57/32 ! -o lo -j LOGDROPOUT
  426. -A DENYOUT -d 45.142.120.87/32 ! -o lo -j LOGDROPOUT
  427. -A DENYOUT -d 45.142.120.65/32 ! -o lo -j LOGDROPOUT
  428. -A DENYOUT -d 45.142.120.138/32 ! -o lo -j LOGDROPOUT
  429. -A DENYOUT -d 45.142.120.63/32 ! -o lo -j LOGDROPOUT
  430. -A DENYOUT -d 45.142.120.34/32 ! -o lo -j LOGDROPOUT
  431. -A DENYOUT -d 45.142.120.82/32 ! -o lo -j LOGDROPOUT
  432. -A DENYOUT -d 45.142.120.20/32 ! -o lo -j LOGDROPOUT
  433. -A DENYOUT -d 111.230.228.235/32 ! -o lo -j LOGDROPOUT
  434. -A DENYOUT -d 185.234.216.63/32 ! -o lo -j LOGDROPOUT
  435. -A DENYOUT -d 128.199.195.139/32 ! -o lo -j LOGDROPOUT
  436. -A DENYOUT -d 185.234.219.14/32 ! -o lo -j LOGDROPOUT
  437. -A DENYOUT -d 185.234.218.85/32 ! -o lo -j LOGDROPOUT
  438. -A DENYOUT -d 185.234.218.84/32 ! -o lo -j LOGDROPOUT
  439. -A DENYOUT -d 212.70.149.70/32 ! -o lo -j LOGDROPOUT
  440. -A DENYOUT -d 212.70.149.85/32 ! -o lo -j LOGDROPOUT
  441. -A DENYOUT -d 212.70.149.54/32 ! -o lo -j LOGDROPOUT
  442. -A DENYOUT -d 193.169.254.43/32 ! -o lo -j LOGDROPOUT
  443. -A DENYOUT -d 193.169.254.41/32 ! -o lo -j LOGDROPOUT
  444. -A DENYOUT -d 193.169.254.42/32 ! -o lo -j LOGDROPOUT
  445. -A DENYOUT -d 193.169.254.39/32 ! -o lo -j LOGDROPOUT
  446. -A DENYOUT -d 193.169.254.5/32 ! -o lo -j LOGDROPOUT
  447. -A DENYOUT -d 193.169.254.8/32 ! -o lo -j LOGDROPOUT
  448. -A DENYOUT -d 193.169.254.7/32 ! -o lo -j LOGDROPOUT
  449. -A DENYOUT -d 185.234.219.230/32 ! -o lo -j LOGDROPOUT
  450. -A DENYOUT -d 185.234.219.12/32 ! -o lo -j LOGDROPOUT
  451. -A DENYOUT -d 185.234.219.13/32 ! -o lo -j LOGDROPOUT
  452. -A DENYOUT -d 185.234.219.229/32 ! -o lo -j LOGDROPOUT
  453. -A DENYOUT -d 185.234.219.227/32 ! -o lo -j LOGDROPOUT
  454. -A DENYOUT -d 185.234.219.11/32 ! -o lo -j LOGDROPOUT
  455. -A DENYOUT -d 185.234.219.228/32 ! -o lo -j LOGDROPOUT
  456. -A DENYOUT -d 112.35.79.100/32 ! -o lo -j LOGDROPOUT
  457. -A DENYOUT -d 193.169.253.136/32 ! -o lo -j LOGDROPOUT
  458. -A DENYOUT -d 193.169.253.178/32 ! -o lo -j LOGDROPOUT
  459. -A DENYOUT -d 193.169.253.52/32 ! -o lo -j LOGDROPOUT
  460. -A DENYOUT -d 190.85.102.124/32 ! -o lo -j LOGDROPOUT
  461. -A DENYOUT -d 193.169.253.128/32 ! -o lo -j LOGDROPOUT
  462. -A DENYOUT -d 37.46.150.239/32 ! -o lo -j LOGDROPOUT
  463. -A DENYOUT -d 193.169.253.49/32 ! -o lo -j LOGDROPOUT
  464. -A DENYOUT -d 193.169.253.137/32 ! -o lo -j LOGDROPOUT
  465. -A DENYOUT -d 45.125.65.105/32 ! -o lo -j LOGDROPOUT
  466. -A DENYOUT -d 103.253.42.54/32 ! -o lo -j LOGDROPOUT
  467. -A DENYOUT -d 141.98.10.183/32 ! -o lo -j LOGDROPOUT
  468. -A DENYOUT -d 141.98.10.143/32 ! -o lo -j LOGDROPOUT
  469. -A DENYOUT -d 141.98.10.136/32 ! -o lo -j LOGDROPOUT
  470. -A DENYOUT -d 185.36.81.33/32 ! -o lo -j LOGDROPOUT
  471. -A DENYOUT -d 45.125.65.39/32 ! -o lo -j LOGDROPOUT
  472. -A DENYOUT -d 193.169.253.56/32 ! -o lo -j LOGDROPOUT
  473. -A DENYOUT -d 193.169.253.48/32 ! -o lo -j LOGDROPOUT
  474. -A DENYOUT -d 186.24.14.92/32 ! -o lo -j LOGDROPOUT
  475. -A DENYOUT -d 193.169.253.118/32 ! -o lo -j LOGDROPOUT
  476. -A DENYOUT -d 37.49.225.117/32 ! -o lo -j LOGDROPOUT
  477. -A DENYOUT -d 59.34.233.229/32 ! -o lo -j LOGDROPOUT
  478. -A DENYOUT -d 87.246.7.226/32 ! -o lo -j LOGDROPOUT
  479. -A DENYOUT -d 87.246.7.242/32 ! -o lo -j LOGDROPOUT
  480. -A DENYOUT -d 176.111.173.23/32 ! -o lo -j LOGDROPOUT
  481. -A DENYOUT -d 87.246.7.243/32 ! -o lo -j LOGDROPOUT
  482. -A DENYOUT -d 45.142.120.6/32 ! -o lo -j LOGDROPOUT
  483. -A DENYOUT -d 45.142.120.13/32 ! -o lo -j LOGDROPOUT
  484. -A DENYOUT -d 176.111.173.14/32 ! -o lo -j LOGDROPOUT
  485. -A DENYOUT -d 45.40.196.167/32 ! -o lo -j LOGDROPOUT
  486. -A DENYOUT -d 212.70.149.71/32 ! -o lo -j LOGDROPOUT
  487. -A DENYOUT -d 193.56.29.45/32 ! -o lo -j LOGDROPOUT
  488. -A DENYOUT -d 176.111.173.17/32 ! -o lo -j LOGDROPOUT
  489. -A DENYOUT -d 212.70.149.55/32 ! -o lo -j LOGDROPOUT
  490. -A DENYOUT -d 45.142.120.95/32 ! -o lo -j LOGDROPOUT
  491. -A DENYOUT -d 45.142.120.16/32 ! -o lo -j LOGDROPOUT
  492. -A DENYOUT -d 45.142.120.22/32 ! -o lo -j LOGDROPOUT
  493. -A DENYOUT -d 45.142.120.132/32 ! -o lo -j LOGDROPOUT
  494. -A DENYOUT -d 45.142.120.156/32 ! -o lo -j LOGDROPOUT
  495. -A DENYOUT -d 45.142.120.104/32 ! -o lo -j LOGDROPOUT
  496. -A DENYOUT -d 45.142.120.23/32 ! -o lo -j LOGDROPOUT
  497. -A DENYOUT -d 45.142.120.233/32 ! -o lo -j LOGDROPOUT
  498. -A DENYOUT -d 193.56.29.118/32 ! -o lo -j LOGDROPOUT
  499. -A DENYOUT -d 45.142.120.8/32 ! -o lo -j LOGDROPOUT
  500. -A DENYOUT -d 193.169.254.252/32 ! -o lo -j LOGDROPOUT
  501. -A DENYOUT -d 193.169.252.9/32 ! -o lo -j LOGDROPOUT
  502. -A DENYOUT -d 176.111.173.50/32 ! -o lo -j LOGDROPOUT
  503. -A DENYOUT -d 193.169.254.233/32 ! -o lo -j LOGDROPOUT
  504. -A DENYOUT -d 193.169.254.232/32 ! -o lo -j LOGDROPOUT
  505. -A DENYOUT -d 176.111.173.48/32 ! -o lo -j LOGDROPOUT
  506. -A DENYOUT -d 176.111.173.47/32 ! -o lo -j LOGDROPOUT
  507. -A DENYOUT -d 193.169.254.251/32 ! -o lo -j LOGDROPOUT
  508. -A DENYOUT -d 176.111.173.49/32 ! -o lo -j LOGDROPOUT
  509. -A DENYOUT -d 193.169.254.231/32 ! -o lo -j LOGDROPOUT
  510. -A DENYOUT -d 176.111.173.46/32 ! -o lo -j LOGDROPOUT
  511. -A DENYOUT -d 193.169.252.8/32 ! -o lo -j LOGDROPOUT
  512. -A DENYOUT -d 193.169.254.235/32 ! -o lo -j LOGDROPOUT
  513. -A DENYOUT -d 193.169.254.250/32 ! -o lo -j LOGDROPOUT
  514. -A DENYOUT -d 193.169.254.234/32 ! -o lo -j LOGDROPOUT
  515. -A DENYOUT -d 103.147.184.193/32 ! -o lo -j LOGDROPOUT
  516. -A DENYOUT -d 87.246.7.37/32 ! -o lo -j LOGDROPOUT
  517. -A ALLOWIN -s 156.206.61.206/32 ! -i lo -j ACCEPT
  518. -A ALLOWIN -s 217.55.254.146/32 ! -i lo -j ACCEPT
  519. -A ALLOWOUT -d 156.206.61.206/32 ! -o lo -j ACCEPT
  520. -A ALLOWOUT -d 217.55.254.146/32 ! -o lo -j ACCEPT
  521. -A LOCALINPUT ! -i lo -j ALLOWIN
  522. -A LOCALINPUT ! -i lo -j DENYIN
  523. -A LOCALOUTPUT ! -o lo -j ALLOWOUT
  524. -A LOCALOUTPUT ! -o lo -j DENYOUT
  525. -A INVDROP -j DROP
  526. -A INVALID -m conntrack --ctstate INVALID -j INVDROP
  527. -A INVALID -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG NONE -j INVDROP
  528. -A INVALID -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG FIN,SYN,RST,PSH,ACK,URG -j INVDROP
  529. -A INVALID -p tcp -m tcp --tcp-flags FIN,SYN FIN,SYN -j INVDROP
  530. -A INVALID -p tcp -m tcp --tcp-flags SYN,RST SYN,RST -j INVDROP
  531. -A INVALID -p tcp -m tcp --tcp-flags FIN,RST FIN,RST -j INVDROP
  532. -A INVALID -p tcp -m tcp --tcp-flags FIN,ACK FIN -j INVDROP
  533. -A INVALID -p tcp -m tcp --tcp-flags PSH,ACK PSH -j INVDROP
  534. -A INVALID -p tcp -m tcp --tcp-flags ACK,URG URG -j INVDROP
  535. -A INVALID -p tcp -m tcp ! --tcp-flags FIN,SYN,RST,ACK SYN -m conntrack --ctstate NEW -j INVDROP
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!