Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # Generated by iptables-save v1.4.12 on Wed Jan 20 08:59:49 2016
- *security
- :INPUT ACCEPT [255228:69325541]
- :FORWARD ACCEPT [0:0]
- :OUTPUT ACCEPT [232917:172336577]
- COMMIT
- # Completed on Wed Jan 20 08:59:49 2016
- # Generated by iptables-save v1.4.12 on Wed Jan 20 08:59:49 2016
- *raw
- :PREROUTING ACCEPT [257451:69466795]
- :OUTPUT ACCEPT [232917:172336577]
- COMMIT
- # Completed on Wed Jan 20 08:59:49 2016
- # Generated by iptables-save v1.4.12 on Wed Jan 20 08:59:49 2016
- *nat
- :PREROUTING ACCEPT [22274:1311993]
- :INPUT ACCEPT [20064:1173291]
- :OUTPUT ACCEPT [24977:2362953]
- :POSTROUTING ACCEPT [24977:2362953]
- COMMIT
- # Completed on Wed Jan 20 08:59:49 2016
- # Generated by iptables-save v1.4.12 on Wed Jan 20 08:59:49 2016
- *mangle
- :PREROUTING ACCEPT [257451:69466795]
- :INPUT ACCEPT [257425:69461799]
- :FORWARD ACCEPT [0:0]
- :OUTPUT ACCEPT [232921:172337777]
- :POSTROUTING ACCEPT [232921:172337777]
- COMMIT
- # Completed on Wed Jan 20 08:59:49 2016
- # Generated by iptables-save v1.4.12 on Wed Jan 20 08:59:49 2016
- *filter
- :INPUT ACCEPT [0:0]
- :FORWARD ACCEPT [0:0]
- :OUTPUT ACCEPT [0:0]
- :fail2ban-ssh - [0:0]
- -A INPUT -p tcp -m multiport --dports 22 -j fail2ban-ssh
- -A INPUT -i lo -j ACCEPT
- -A INPUT -d 127.0.0.0/8 -j REJECT --reject-with icmp-port-unreachable
- -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 443 -j ACCEPT
- -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT
- -A INPUT -p icmp -j ACCEPT
- -A INPUT -m limit --limit 5/min -j LOG --log-prefix "iptables denied: " --log-level 7
- -A INPUT -j DROP
- -A FORWARD -j DROP
- -A OUTPUT -j ACCEPT
- -A fail2ban-ssh -j RETURN
- COMMIT
- # Completed on Wed Jan 20 08:59:49 2016
Add Comment
Please, Sign In to add comment
