API tools faq
paste
Advertisement
Guest User

Untitled

a guest
May 24th, 2019
90
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 14.97 KB | None | 0 0
raw download clone embed print report
  1. root@ns532155:~# sudo iptables -L
  2. Chain INPUT (policy DROP)
  3. target prot opt source destination
  4. ufw-before-logging-input all -- anywhere anywhere
  5. ufw-before-input all -- anywhere anywhere
  6. ufw-after-input all -- anywhere anywhere
  7. ufw-after-logging-input all -- anywhere anywhere
  8. ufw-reject-input all -- anywhere anywhere
  9. ufw-track-input all -- anywhere anywhere
  10.  
  11. Chain FORWARD (policy DROP)
  12. target prot opt source destination
  13. DOCKER-USER all -- anywhere anywhere
  14. DOCKER-ISOLATION-STAGE-1 all -- anywhere anywhere
  15. ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
  16. DOCKER all -- anywhere anywhere
  17. ACCEPT all -- anywhere anywhere
  18. ACCEPT all -- anywhere anywhere
  19. ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
  20. DOCKER all -- anywhere anywhere
  21. ACCEPT all -- anywhere anywhere
  22. ACCEPT all -- anywhere anywhere
  23. ufw-before-logging-forward all -- anywhere anywhere
  24. ufw-before-forward all -- anywhere anywhere
  25. ufw-after-forward all -- anywhere anywhere
  26. ufw-after-logging-forward all -- anywhere anywhere
  27. ufw-reject-forward all -- anywhere anywhere
  28. ufw-track-forward all -- anywhere anywhere
  29.  
  30. Chain OUTPUT (policy ACCEPT)
  31. target prot opt source destination
  32. ufw-before-logging-output all -- anywhere anywhere
  33. ufw-before-output all -- anywhere anywhere
  34. ufw-after-output all -- anywhere anywhere
  35. ufw-after-logging-output all -- anywhere anywhere
  36. ufw-reject-output all -- anywhere anywhere
  37. ufw-track-output all -- anywhere anywhere
  38.  
  39. Chain DOCKER (2 references)
  40. target prot opt source destination
  41. ACCEPT tcp -- anywhere 172.18.0.5 tcp dpt:webmin
  42. ACCEPT udp -- anywhere 172.18.0.5 udp dpt:10000
  43. ACCEPT tcp -- anywhere 172.18.0.7 tcp dpt:10001
  44. ACCEPT udp -- anywhere 172.18.0.7 udp dpt:10001
  45. ACCEPT tcp -- anywhere 172.18.0.8 tcp dpt:25568
  46. ACCEPT udp -- anywhere 172.18.0.8 udp dpt:25568
  47. ACCEPT tcp -- anywhere 172.18.0.10 tcp dpt:10003
  48. ACCEPT udp -- anywhere 172.18.0.10 udp dpt:10003
  49. ACCEPT tcp -- anywhere 172.18.0.11 tcp dpt:10004
  50. ACCEPT udp -- anywhere 172.18.0.11 udp dpt:10004
  51. ACCEPT tcp -- anywhere 172.18.0.6 tcp dpt:25564
  52. ACCEPT udp -- anywhere 172.18.0.6 udp dpt:25564
  53. ACCEPT tcp -- anywhere 172.18.0.12 tcp dpt:25566
  54. ACCEPT udp -- anywhere 172.18.0.12 udp dpt:25566
  55. ACCEPT tcp -- anywhere 172.18.0.4 tcp dpt:10005
  56. ACCEPT udp -- anywhere 172.18.0.4 udp dpt:10005
  57. ACCEPT tcp -- anywhere 172.18.0.9 tcp dpt:10002
  58. ACCEPT udp -- anywhere 172.18.0.9 udp dpt:10002
  59. ACCEPT tcp -- anywhere 172.18.0.16 tcp dpt:25572
  60. ACCEPT udp -- anywhere 172.18.0.16 udp dpt:25572
  61. ACCEPT tcp -- anywhere 172.18.0.3 tcp dpt:25667
  62. ACCEPT udp -- anywhere 172.18.0.3 udp dpt:25667
  63. ACCEPT tcp -- anywhere 172.18.0.3 tcp dpt:25567
  64. ACCEPT udp -- anywhere 172.18.0.3 udp dpt:25567
  65. ACCEPT tcp -- anywhere 172.18.0.2 tcp dpt:25665
  66. ACCEPT udp -- anywhere 172.18.0.2 udp dpt:25665
  67. ACCEPT tcp -- anywhere 172.18.0.2 tcp dpt:25565
  68. ACCEPT udp -- anywhere 172.18.0.2 udp dpt:25565
  69. ACCEPT tcp -- anywhere 172.18.0.2 tcp dpt:8804
  70. ACCEPT udp -- anywhere 172.18.0.2 udp dpt:8804
  71. ACCEPT tcp -- anywhere 172.18.0.2 tcp dpt:8123
  72. ACCEPT udp -- anywhere 172.18.0.2 udp dpt:8123
  73. ACCEPT tcp -- anywhere 172.18.0.14 tcp dpt:25570
  74. ACCEPT udp -- anywhere 172.18.0.14 udp dpt:25570
  75. ACCEPT tcp -- anywhere 172.18.0.13 tcp dpt:25569
  76. ACCEPT udp -- anywhere 172.18.0.13 udp dpt:25569
  77. ACCEPT tcp -- anywhere 172.18.0.15 tcp dpt:34197
  78. ACCEPT udp -- anywhere 172.18.0.15 udp dpt:34197
  79.  
  80. Chain DOCKER-ISOLATION-STAGE-1 (1 references)
  81. target prot opt source destination
  82. DOCKER-ISOLATION-STAGE-2 all -- anywhere anywhere
  83. DOCKER-ISOLATION-STAGE-2 all -- anywhere anywhere
  84. RETURN all -- anywhere anywhere
  85.  
  86. Chain DOCKER-ISOLATION-STAGE-2 (2 references)
  87. target prot opt source destination
  88. DROP all -- anywhere anywhere
  89. DROP all -- anywhere anywhere
  90. RETURN all -- anywhere anywhere
  91.  
  92. Chain DOCKER-USER (1 references)
  93. target prot opt source destination
  94. RETURN all -- anywhere anywhere
  95.  
  96. Chain ufw-after-forward (1 references)
  97. target prot opt source destination
  98.  
  99. Chain ufw-after-input (1 references)
  100. target prot opt source destination
  101. ufw-skip-to-policy-input udp -- anywhere anywhere udp dpt:netbios-ns
  102. ufw-skip-to-policy-input udp -- anywhere anywhere udp dpt:netbios-dgm
  103. ufw-skip-to-policy-input tcp -- anywhere anywhere tcp dpt:netbios-ssn
  104. ufw-skip-to-policy-input tcp -- anywhere anywhere tcp dpt:microsoft-ds
  105. ufw-skip-to-policy-input udp -- anywhere anywhere udp dpt:bootps
  106. ufw-skip-to-policy-input udp -- anywhere anywhere udp dpt:bootpc
  107. ufw-skip-to-policy-input all -- anywhere anywhere ADDRTYPE match dst-type BROADCAST
  108.  
  109. Chain ufw-after-logging-forward (1 references)
  110. target prot opt source destination
  111. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW BLOCK] "
  112.  
  113. Chain ufw-after-logging-input (1 references)
  114. target prot opt source destination
  115. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW BLOCK] "
  116.  
  117. Chain ufw-after-logging-output (1 references)
  118. target prot opt source destination
  119.  
  120. Chain ufw-after-output (1 references)
  121. target prot opt source destination
  122.  
  123. Chain ufw-before-forward (1 references)
  124. target prot opt source destination
  125. ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
  126. ACCEPT icmp -- anywhere anywhere icmp destination-unreachable
  127. ACCEPT icmp -- anywhere anywhere icmp source-quench
  128. ACCEPT icmp -- anywhere anywhere icmp time-exceeded
  129. ACCEPT icmp -- anywhere anywhere icmp parameter-problem
  130. ACCEPT icmp -- anywhere anywhere icmp echo-request
  131. ufw-user-forward all -- anywhere anywhere
  132.  
  133. Chain ufw-before-input (1 references)
  134. target prot opt source destination
  135. ACCEPT all -- anywhere anywhere
  136. ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
  137. ufw-logging-deny all -- anywhere anywhere ctstate INVALID
  138. DROP all -- anywhere anywhere ctstate INVALID
  139. ACCEPT icmp -- anywhere anywhere icmp destination-unreachable
  140. ACCEPT icmp -- anywhere anywhere icmp source-quench
  141. ACCEPT icmp -- anywhere anywhere icmp time-exceeded
  142. ACCEPT icmp -- anywhere anywhere icmp parameter-problem
  143. ACCEPT icmp -- anywhere anywhere icmp echo-request
  144. ACCEPT udp -- anywhere anywhere udp spt:bootps dpt:bootpc
  145. ufw-not-local all -- anywhere anywhere
  146. ACCEPT udp -- anywhere 224.0.0.251 udp dpt:mdns
  147. ACCEPT udp -- anywhere 239.255.255.250 udp dpt:1900
  148. ufw-user-input all -- anywhere anywhere
  149.  
  150. Chain ufw-before-logging-forward (1 references)
  151. target prot opt source destination
  152.  
  153. Chain ufw-before-logging-input (1 references)
  154. target prot opt source destination
  155.  
  156. Chain ufw-before-logging-output (1 references)
  157. target prot opt source destination
  158.  
  159. Chain ufw-before-output (1 references)
  160. target prot opt source destination
  161. ACCEPT all -- anywhere anywhere
  162. ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
  163. ufw-user-output all -- anywhere anywhere
  164.  
  165. Chain ufw-logging-allow (0 references)
  166. target prot opt source destination
  167. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW ALLOW] "
  168.  
  169. Chain ufw-logging-deny (2 references)
  170. target prot opt source destination
  171. RETURN all -- anywhere anywhere ctstate INVALID limit: avg 3/min burst 10
  172. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW BLOCK] "
  173.  
  174. Chain ufw-not-local (1 references)
  175. target prot opt source destination
  176. RETURN all -- anywhere anywhere ADDRTYPE match dst-type LOCAL
  177. RETURN all -- anywhere anywhere ADDRTYPE match dst-type MULTICAST
  178. RETURN all -- anywhere anywhere ADDRTYPE match dst-type BROADCAST
  179. ufw-logging-deny all -- anywhere anywhere limit: avg 3/min burst 10
  180. DROP all -- anywhere anywhere
  181.  
  182. Chain ufw-reject-forward (1 references)
  183. target prot opt source destination
  184.  
  185. Chain ufw-reject-input (1 references)
  186. target prot opt source destination
  187.  
  188. Chain ufw-reject-output (1 references)
  189. target prot opt source destination
  190.  
  191. Chain ufw-skip-to-policy-forward (0 references)
  192. target prot opt source destination
  193. DROP all -- anywhere anywhere
  194.  
  195. Chain ufw-skip-to-policy-input (7 references)
  196. target prot opt source destination
  197. DROP all -- anywhere anywhere
  198.  
  199. Chain ufw-skip-to-policy-output (0 references)
  200. target prot opt source destination
  201. ACCEPT all -- anywhere anywhere
  202.  
  203. Chain ufw-track-forward (1 references)
  204. target prot opt source destination
  205.  
  206. Chain ufw-track-input (1 references)
  207. target prot opt source destination
  208.  
  209. Chain ufw-track-output (1 references)
  210. target prot opt source destination
  211. ACCEPT tcp -- anywhere anywhere ctstate NEW
  212. ACCEPT udp -- anywhere anywhere ctstate NEW
  213.  
  214. Chain ufw-user-forward (1 references)
  215. target prot opt source destination
  216.  
  217. Chain ufw-user-input (1 references)
  218. target prot opt source destination
  219. ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
  220. ACCEPT udp -- anywhere anywhere udp dpt:22
  221. ACCEPT tcp -- anywhere anywhere tcp dpt:http
  222. ACCEPT udp -- anywhere anywhere udp dpt:80
  223. ACCEPT tcp -- anywhere anywhere tcp dpt:https
  224. ACCEPT udp -- anywhere anywhere udp dpt:443
  225. ACCEPT tcp -- anywhere anywhere tcp dpt:http-alt
  226. ACCEPT udp -- anywhere anywhere udp dpt:http-alt
  227. ACCEPT tcp -- anywhere anywhere tcp dpt:8443
  228. ACCEPT udp -- anywhere anywhere udp dpt:8443
  229. ACCEPT tcp -- anywhere anywhere tcp dpt:2022
  230. ACCEPT udp -- anywhere anywhere udp dpt:2022
  231. ACCEPT tcp -- anywhere anywhere tcp dpt:6379
  232. ACCEPT udp -- anywhere anywhere udp dpt:6379
  233. ACCEPT tcp -- anywhere anywhere tcp dpt:25667
  234. ACCEPT udp -- anywhere anywhere udp dpt:25667
  235. ACCEPT tcp -- anywhere anywhere tcp dpt:25665
  236. ACCEPT udp -- anywhere anywhere udp dpt:25665
  237. ACCEPT tcp -- anywhere anywhere tcp dpt:34197
  238. ACCEPT udp -- anywhere anywhere udp dpt:34197
  239.  
  240. Chain ufw-user-limit (0 references)
  241. target prot opt source destination
  242. LOG all -- anywhere anywhere limit: avg 3/min burst 5 LOG level warning prefix "[UFW LIMIT BLOCK] "
  243. REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
  244.  
  245. Chain ufw-user-limit-accept (0 references)
  246. target prot opt source destination
  247. ACCEPT all -- anywhere anywhere
  248.  
  249. Chain ufw-user-logging-forward (0 references)
  250. target prot opt source destination
  251.  
  252. Chain ufw-user-logging-input (0 references)
  253. target prot opt source destination
  254.  
  255. Chain ufw-user-logging-output (0 references)
  256. target prot opt source destination
  257.  
  258. Chain ufw-user-output (1 references)
  259. target prot opt source destination
  260. root@ns532155:~# sudo iptables -L | grep DROP|REJECT
  261. REJECT: command not found
  262. root@ns532155:~# sudo iptables -L | grep DROP
  263. Chain INPUT (policy DROP)
  264. Chain FORWARD (policy DROP)
  265. DROP all -- anywhere anywhere
  266. DROP all -- anywhere anywhere
  267. DROP all -- anywhere anywhere ctstate INVALID
  268. DROP all -- anywhere anywhere
  269. DROP all -- anywhere anywhere
  270. DROP all -- anywhere anywhere
  271. root@ns532155:~# sudo iptables -L | grep REJECT
  272. REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
  273. root@ns532155:~# sudo iptables -L | REJECT
  274. REJECT: command not found
  275. root@ns532155:~# sudo iptables -L | grep DROP
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!