Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # Generated by iptables-save v1.4.4 on Tue Oct 27 10:11:58 2009
- *filter
- :INPUT ACCEPT [0:0]
- :FORWARD ACCEPT [0:0]
- :OUTPUT ACCEPT [15:780]
- :block - [0:0]
- :serv - [0:0]
- :new - [0:0]
- #
- -A INPUT -i lo -j ACCEPT
- -A INPUT -j block
- #
- -A FORWARD -i br0 -o br0 -j ACCEPT
- -A FORWARD -j block
- #
- -A block -p icmpv6 -j ACCEPT
- -A block -m state --state RELATED,ESTABLISHED -j ACCEPT
- -A block -m state --state NEW -j new
- -A block -m limit --limit 3/min --limit-burst 10 -j LOG --log-prefix "drop6: "
- -A block -j REJECT --reject-with icmp6-port-unreachable
- #
- -A new -i br0 -j serv
- -A new -i eth+ -j serv
- -A new -p udp --sport 5353 --dport 5353 -j ACCEPT
- #
- -A serv -p tcp --dport 22 -j ACCEPT
- -A serv -p udp --dport 3545 -j ACCEPT
- #
- COMMIT
- # Completed on Tue Oct 27 10:11:58 2009
Add Comment
Please, Sign In to add comment
