API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Mar 25th, 2019
89
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 3.22 KB | None | 0 0
raw download clone embed print report
  1. # iptables -L
  2. Chain INPUT (policy ACCEPT)
  3. target prot opt source destination
  4. ACCEPT all -- anywhere anywhere
  5. REJECT all -- 127.0.0.0/8 anywhere reject-with icmp-port-unreachable
  6. ACCEPT icmp -- anywhere anywhere state NEW icmp echo-request
  7. ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED
  8. ACCEPT tcp -- anywhere anywhere tcp spt:ftp state ESTABLISHED
  9. ACCEPT tcp -- anywhere anywhere tcp spt:ftp-data state RELATED,ESTABLISHED
  10. ACCEPT tcp -- anywhere anywhere tcp spts:1024:65535 dpts:1024:65535 state ESTABLISHED
  11. ACCEPT tcp -- anywhere anywhere state NEW,ESTABLISHED tcp dpt:ssh
  12. ACCEPT udp -- anywhere anywhere state NEW,ESTABLISHED udp dpt:openvpn
  13. ACCEPT udp -- anywhere anywhere state ESTABLISHED udp spt:domain
  14. ACCEPT tcp -- anywhere anywhere state ESTABLISHED tcp spt:domain
  15. ACCEPT tcp -- anywhere anywhere state ESTABLISHED tcp spt:http
  16. ACCEPT tcp -- anywhere anywhere state ESTABLISHED tcp spt:https
  17. ACCEPT all -- anywhere anywhere
  18. LOG all -- anywhere anywhere limit: avg 3/min burst 5 LOG level warning prefix "iptables_INPUT_denied: "
  19. REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
  20.  
  21. Chain FORWARD (policy ACCEPT)
  22. target prot opt source destination
  23. ACCEPT all -- anywhere anywhere
  24. ACCEPT all -- 10.89.0.0/24 anywhere
  25. ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
  26. LOG all -- anywhere anywhere limit: avg 3/min burst 5 LOG level warning prefix "iptables_FORWARD_denied: "
  27. REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
  28.  
  29. Chain OUTPUT (policy ACCEPT)
  30. target prot opt source destination
  31. ACCEPT all -- anywhere anywhere
  32. ACCEPT icmp -- anywhere anywhere
  33. ACCEPT tcp -- anywhere anywhere state ESTABLISHED tcp spt:ssh
  34. ACCEPT udp -- anywhere anywhere state ESTABLISHED udp spt:openvpn
  35. ACCEPT udp -- anywhere anywhere state NEW,ESTABLISHED udp dpt:domain
  36. ACCEPT tcp -- anywhere anywhere state NEW,ESTABLISHED tcp dpt:domain
  37. ACCEPT tcp -- anywhere anywhere state NEW,ESTABLISHED tcp dpt:http
  38. ACCEPT tcp -- anywhere anywhere state NEW,ESTABLISHED tcp dpt:https
  39. ACCEPT all -- anywhere anywhere
  40. LOG all -- anywhere anywhere limit: avg 3/min burst 5 LOG level warning prefix "iptables_OUTPUT_denied: "
  41. REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!