Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- root@ns532155:~# sudo iptables -L
- Chain INPUT (policy DROP)
- target prot opt source destination
- ufw-before-logging-input all -- anywhere anywhere
- ufw-before-input all -- anywhere anywhere
- ufw-after-input all -- anywhere anywhere
- ufw-after-logging-input all -- anywhere anywhere
- ufw-reject-input all -- anywhere anywhere
- ufw-track-input all -- anywhere anywhere
- Chain FORWARD (policy DROP)
- target prot opt source destination
- DOCKER-USER all -- anywhere anywhere
- DOCKER-ISOLATION-STAGE-1 all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
- DOCKER all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
- DOCKER all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere
- ufw-before-logging-forward all -- anywhere anywhere
- ufw-before-forward all -- anywhere anywhere
- ufw-after-forward all -- anywhere anywhere
- ufw-after-logging-forward all -- anywhere anywhere
- ufw-reject-forward all -- anywhere anywhere
- ufw-track-forward all -- anywhere anywhere
- Chain OUTPUT (policy ACCEPT)
- target prot opt source destination
- ufw-before-logging-output all -- anywhere anywhere
- ufw-before-output all -- anywhere anywhere
- ufw-after-output all -- anywhere anywhere
- ufw-after-logging-output all -- anywhere anywhere
- ufw-reject-output all -- anywhere anywhere
- ufw-track-output all -- anywhere anywhere
- Chain DOCKER (2 references)
- target prot opt source destination
- ACCEPT tcp -- anywhere 172.18.0.5 tcp dpt:webmin
- ACCEPT udp -- anywhere 172.18.0.5 udp dpt:10000
- ACCEPT tcp -- anywhere 172.18.0.7 tcp dpt:10001
- ACCEPT udp -- anywhere 172.18.0.7 udp dpt:10001
- ACCEPT tcp -- anywhere 172.18.0.8 tcp dpt:25568
- ACCEPT udp -- anywhere 172.18.0.8 udp dpt:25568
- ACCEPT tcp -- anywhere 172.18.0.10 tcp dpt:10003
- ACCEPT udp -- anywhere 172.18.0.10 udp dpt:10003
- ACCEPT tcp -- anywhere 172.18.0.11 tcp dpt:10004
- ACCEPT udp -- anywhere 172.18.0.11 udp dpt:10004
- ACCEPT tcp -- anywhere 172.18.0.6 tcp dpt:25564
- ACCEPT udp -- anywhere 172.18.0.6 udp dpt:25564
- ACCEPT tcp -- anywhere 172.18.0.12 tcp dpt:25566
- ACCEPT udp -- anywhere 172.18.0.12 udp dpt:25566
- ACCEPT tcp -- anywhere 172.18.0.4 tcp dpt:10005
- ACCEPT udp -- anywhere 172.18.0.4 udp dpt:10005
- ACCEPT tcp -- anywhere 172.18.0.9 tcp dpt:10002
- ACCEPT udp -- anywhere 172.18.0.9 udp dpt:10002
- ACCEPT tcp -- anywhere 172.18.0.16 tcp dpt:25572
- ACCEPT udp -- anywhere 172.18.0.16 udp dpt:25572
- ACCEPT tcp -- anywhere 172.18.0.3 tcp dpt:25667
- ACCEPT udp -- anywhere 172.18.0.3 udp dpt:25667
- ACCEPT tcp -- anywhere 172.18.0.3 tcp dpt:25567
- ACCEPT udp -- anywhere 172.18.0.3 udp dpt:25567
- ACCEPT tcp -- anywhere 172.18.0.2 tcp dpt:25665
- ACCEPT udp -- anywhere 172.18.0.2 udp dpt:25665
- ACCEPT tcp -- anywhere 172.18.0.2 tcp dpt:25565
- ACCEPT udp -- anywhere 172.18.0.2 udp dpt:25565
- ACCEPT tcp -- anywhere 172.18.0.2 tcp dpt:8804
- ACCEPT udp -- anywhere 172.18.0.2 udp dpt:8804
- ACCEPT tcp -- anywhere 172.18.0.2 tcp dpt:8123
- ACCEPT udp -- anywhere 172.18.0.2 udp dpt:8123
- ACCEPT tcp -- anywhere 172.18.0.14 tcp dpt:25570
- ACCEPT udp -- anywhere 172.18.0.14 udp dpt:25570
- ACCEPT tcp -- anywhere 172.18.0.13 tcp dpt:25569
- ACCEPT udp -- anywhere 172.18.0.13 udp dpt:25569
- ACCEPT tcp -- anywhere 172.18.0.15 tcp dpt:34197
- ACCEPT udp -- anywhere 172.18.0.15 udp dpt:34197
- Chain DOCKER-ISOLATION-STAGE-1 (1 references)
- target prot opt source destination
- DOCKER-ISOLATION-STAGE-2 all -- anywhere anywhere
- DOCKER-ISOLATION-STAGE-2 all -- anywhere anywhere
- RETURN all -- anywhere anywhere
- Chain DOCKER-ISOLATION-STAGE-2 (2 references)
- target prot opt source destination
- DROP all -- anywhere anywhere
- DROP all -- anywhere anywhere
- RETURN all -- anywhere anywhere
- Chain DOCKER-USER (1 references)
- target prot opt source destination
- RETURN all -- anywhere anywhere
- Chain ufw-after-forward (1 references)
- target prot opt source destination
- Chain ufw-after-input (1 references)
- target prot opt source destination
- ufw-skip-to-policy-input udp -- anywhere anywhere udp dpt:netbios-ns
- ufw-skip-to-policy-input udp -- anywhere anywhere udp dpt:netbios-dgm
- ufw-skip-to-policy-input tcp -- anywhere anywhere tcp dpt:netbios-ssn
- ufw-skip-to-policy-input tcp -- anywhere anywhere tcp dpt:microsoft-ds
- ufw-skip-to-policy-input udp -- anywhere anywhere udp dpt:bootps
- ufw-skip-to-policy-input udp -- anywhere anywhere udp dpt:bootpc
- ufw-skip-to-policy-input all -- anywhere anywhere ADDRTYPE match dst-type BROADCAST
- Chain ufw-after-logging-forward (1 references)
- target prot opt source destination
- LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW BLOCK] "
- Chain ufw-after-logging-input (1 references)
- target prot opt source destination
- LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW BLOCK] "
- Chain ufw-after-logging-output (1 references)
- target prot opt source destination
- Chain ufw-after-output (1 references)
- target prot opt source destination
- Chain ufw-before-forward (1 references)
- target prot opt source destination
- ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
- ACCEPT icmp -- anywhere anywhere icmp destination-unreachable
- ACCEPT icmp -- anywhere anywhere icmp source-quench
- ACCEPT icmp -- anywhere anywhere icmp time-exceeded
- ACCEPT icmp -- anywhere anywhere icmp parameter-problem
- ACCEPT icmp -- anywhere anywhere icmp echo-request
- ufw-user-forward all -- anywhere anywhere
- Chain ufw-before-input (1 references)
- target prot opt source destination
- ACCEPT all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
- ufw-logging-deny all -- anywhere anywhere ctstate INVALID
- DROP all -- anywhere anywhere ctstate INVALID
- ACCEPT icmp -- anywhere anywhere icmp destination-unreachable
- ACCEPT icmp -- anywhere anywhere icmp source-quench
- ACCEPT icmp -- anywhere anywhere icmp time-exceeded
- ACCEPT icmp -- anywhere anywhere icmp parameter-problem
- ACCEPT icmp -- anywhere anywhere icmp echo-request
- ACCEPT udp -- anywhere anywhere udp spt:bootps dpt:bootpc
- ufw-not-local all -- anywhere anywhere
- ACCEPT udp -- anywhere 224.0.0.251 udp dpt:mdns
- ACCEPT udp -- anywhere 239.255.255.250 udp dpt:1900
- ufw-user-input all -- anywhere anywhere
- Chain ufw-before-logging-forward (1 references)
- target prot opt source destination
- Chain ufw-before-logging-input (1 references)
- target prot opt source destination
- Chain ufw-before-logging-output (1 references)
- target prot opt source destination
- Chain ufw-before-output (1 references)
- target prot opt source destination
- ACCEPT all -- anywhere anywhere
- ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
- ufw-user-output all -- anywhere anywhere
- Chain ufw-logging-allow (0 references)
- target prot opt source destination
- LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW ALLOW] "
- Chain ufw-logging-deny (2 references)
- target prot opt source destination
- RETURN all -- anywhere anywhere ctstate INVALID limit: avg 3/min burst 10
- LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW BLOCK] "
- Chain ufw-not-local (1 references)
- target prot opt source destination
- RETURN all -- anywhere anywhere ADDRTYPE match dst-type LOCAL
- RETURN all -- anywhere anywhere ADDRTYPE match dst-type MULTICAST
- RETURN all -- anywhere anywhere ADDRTYPE match dst-type BROADCAST
- ufw-logging-deny all -- anywhere anywhere limit: avg 3/min burst 10
- DROP all -- anywhere anywhere
- Chain ufw-reject-forward (1 references)
- target prot opt source destination
- Chain ufw-reject-input (1 references)
- target prot opt source destination
- Chain ufw-reject-output (1 references)
- target prot opt source destination
- Chain ufw-skip-to-policy-forward (0 references)
- target prot opt source destination
- DROP all -- anywhere anywhere
- Chain ufw-skip-to-policy-input (7 references)
- target prot opt source destination
- DROP all -- anywhere anywhere
- Chain ufw-skip-to-policy-output (0 references)
- target prot opt source destination
- ACCEPT all -- anywhere anywhere
- Chain ufw-track-forward (1 references)
- target prot opt source destination
- Chain ufw-track-input (1 references)
- target prot opt source destination
- Chain ufw-track-output (1 references)
- target prot opt source destination
- ACCEPT tcp -- anywhere anywhere ctstate NEW
- ACCEPT udp -- anywhere anywhere ctstate NEW
- Chain ufw-user-forward (1 references)
- target prot opt source destination
- Chain ufw-user-input (1 references)
- target prot opt source destination
- ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
- ACCEPT udp -- anywhere anywhere udp dpt:22
- ACCEPT tcp -- anywhere anywhere tcp dpt:http
- ACCEPT udp -- anywhere anywhere udp dpt:80
- ACCEPT tcp -- anywhere anywhere tcp dpt:https
- ACCEPT udp -- anywhere anywhere udp dpt:443
- ACCEPT tcp -- anywhere anywhere tcp dpt:http-alt
- ACCEPT udp -- anywhere anywhere udp dpt:http-alt
- ACCEPT tcp -- anywhere anywhere tcp dpt:8443
- ACCEPT udp -- anywhere anywhere udp dpt:8443
- ACCEPT tcp -- anywhere anywhere tcp dpt:2022
- ACCEPT udp -- anywhere anywhere udp dpt:2022
- ACCEPT tcp -- anywhere anywhere tcp dpt:6379
- ACCEPT udp -- anywhere anywhere udp dpt:6379
- ACCEPT tcp -- anywhere anywhere tcp dpt:25667
- ACCEPT udp -- anywhere anywhere udp dpt:25667
- ACCEPT tcp -- anywhere anywhere tcp dpt:25665
- ACCEPT udp -- anywhere anywhere udp dpt:25665
- ACCEPT tcp -- anywhere anywhere tcp dpt:34197
- ACCEPT udp -- anywhere anywhere udp dpt:34197
- Chain ufw-user-limit (0 references)
- target prot opt source destination
- LOG all -- anywhere anywhere limit: avg 3/min burst 5 LOG level warning prefix "[UFW LIMIT BLOCK] "
- REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
- Chain ufw-user-limit-accept (0 references)
- target prot opt source destination
- ACCEPT all -- anywhere anywhere
- Chain ufw-user-logging-forward (0 references)
- target prot opt source destination
- Chain ufw-user-logging-input (0 references)
- target prot opt source destination
- Chain ufw-user-logging-output (0 references)
- target prot opt source destination
- Chain ufw-user-output (1 references)
- target prot opt source destination
- root@ns532155:~# sudo iptables -L | grep DROP|REJECT
- REJECT: command not found
- root@ns532155:~# sudo iptables -L | grep DROP
- Chain INPUT (policy DROP)
- Chain FORWARD (policy DROP)
- DROP all -- anywhere anywhere
- DROP all -- anywhere anywhere
- DROP all -- anywhere anywhere ctstate INVALID
- DROP all -- anywhere anywhere
- DROP all -- anywhere anywhere
- DROP all -- anywhere anywhere
- root@ns532155:~# sudo iptables -L | grep REJECT
- REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
- root@ns532155:~# sudo iptables -L | REJECT
- REJECT: command not found
- root@ns532155:~# sudo iptables -L | grep DROP
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement