Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- localhost:/srv/tables# iptables -nxvL
- Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
- pkts bytes target prot opt in out source destination
- 39980 6551637 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
- 0 0 DROP icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmp type 8 length 86:65535
- 2303 242699 ACCEPT all -- * * 188.72.220.14 0.0.0.0/0
- 0 0 ACCEPT all -- * * 78.46.47.232 0.0.0.0/0
- 1198 49797 ACCEPT all -- * * 62.122.207.209 0.0.0.0/0
- 172 11608 RECENT1 tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2106
- 91697 4603082 RECENT1 tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7173
- 223 15522 RECENT2 tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2107
- 179112 8740513 RECENT2 tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7175
- 3 168 PLIMITS all -- * * 0.0.0.0/0 0.0.0.0/0
- Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
- pkts bytes target prot opt in out source destination
- 0 0 PLIMITS all -- * * 0.0.0.0/0 0.0.0.0/0
- Chain OUTPUT (policy ACCEPT 345903 packets, 125810686 bytes)
- pkts bytes target prot opt in out source destination
- Chain LIMITS (1 references)
- pkts bytes target prot opt in out source destination
- 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2106 ctstate NEW limit: above 3/min burst 1 mode srcip htable-max 3000 htable-expire 30000
- 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7173 ctstate NEW limit: above 3/min burst 1 mode srcip htable-max 3000 htable-expire 30000
- 0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2106 flags:0x3F/0x02 #conn/32 > 3 reject-with icmp-port-unreachable
- 0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7173 #conn/32 > 10 reject-with icmp-port-unreachable
- 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2107 ctstate NEW limit: above 3/min burst 1 mode srcip htable-max 3000 htable-expire 30000
- 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7175 ctstate NEW limit: above 3/min burst 1 mode srcip htable-max 3000 htable-expire 30000
- 0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2107 flags:0x3F/0x02 #conn/32 > 3 reject-with icmp-port-unreachable
- 0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7175 #conn/32 > 10 reject-with icmp-port-unreachable
- 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 303/sec burst 5 tcp dpt:232
- 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 tcp dpt:2106
- 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 tcp dpt:2107
- 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 length 256:65535 tcp dpt:2106
- 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 length 256:65535 tcp dpt:2107
- Chain PLIMITS (2 references)
- pkts bytes target prot opt in out source destination
- 3 168 LIMITS all -- * * 0.0.0.0/0 0.0.0.0/0
- 0 0 REJECT all -- * * 0.0.0.0/0 127.0.0.0/8 reject-with icmp-port-unreachable
- 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
- 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmp type 255
- 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
- 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:232
- 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW tcp dpt:2106 recent: UPDATE seconds: 1 name: DEFAULT side: source
- 3 168 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited
- Chain RECENT1 (2 references)
- pkts bytes target prot opt in out source destination
- 142 10076 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2106 ctstate ESTABLISHED
- 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2106 flags:0x17/0x02 #conn/32 > 3
- 12 624 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2106 flags:0x17/0x02 recent: CHECK name: RECENT1 side: source
- 18 908 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2106 flags:0x17/0x02 recent: SET name: RECENT1 side: source
- 5 221 tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7173 ctstate ESTABLISHED ctstatus ASSURED connbytes 10:10 connbytes mode packets connbytes direction both recent: REMOVE name: RECENT1 side: source
- 91680 4602194 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7173 ctstate ESTABLISHED
- 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7173 flags:0x17/0x02 !recent: CHECK name: RECENT1 side: source
- 17 888 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7173 flags:0x17/0x02 recent: SET name: RECENT1 side: source
- Chain RECENT2 (2 references)
- pkts bytes target prot opt in out source destination
- 160 12478 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2107 ctstate ESTABLISHED
- 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2107 flags:0x17/0x02 #conn/32 > 3
- 38 1824 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2107 flags:0x17/0x02 recent: CHECK name: RECENT2 side: source
- 25 1220 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:2107 flags:0x17/0x02 recent: SET name: RECENT2 side: source
- 3 120 tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7175 ctstate ESTABLISHED ctstatus ASSURED connbytes 10:10 connbytes mode packets connbytes direction both recent: REMOVE name: RECENT2 side: source
- 179102 8740009 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7175 ctstate ESTABLISHED
- 4 216 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7175 flags:0x17/0x02 !recent: CHECK name: RECENT2 side: source
- 6 288 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:7175 flags:0x17/0x02 recent: SET name: RECENT2 side: source
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
