API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 24th, 2022
50
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 15.17 KB | None | 0 0
raw download clone embed print report
  1. admin@RT-AX86U-24F8:/tmp/home/root# iptables -vnL
  2. Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
  3. pkts bytes target prot opt in out source destination
  4. 1513 105K REJECT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:53 STRING match "|0000410001|" ALGO name bm TO 65535 reject-with icmp-port-unreachable
  5. 937 1127K INPUT_PING icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
  6. 501K 81M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
  7. 267 17345 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
  8. 176K 39M PTCSRVWAN all -- !br0 * 0.0.0.0/0 0.0.0.0/0
  9. 66380 8368K PTCSRVLAN all -- br0 * 0.0.0.0/0 0.0.0.0/0
  10. 0 0 DROP tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 tcp dpt:5152
  11. 66380 8368K ACCEPT all -- br0 * 0.0.0.0/0 0.0.0.0/0 state NEW
  12. 165K 38M ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0 state NEW
  13. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp spt:67 dpt:68
  14. 0 0 INPUT_ICMP icmp -- * * 0.0.0.0/0 0.0.0.0/0
  15. 1785 115K ACCEPT udp -- br1 * 0.0.0.0/0 0.0.0.0/0 udp dpt:53
  16. 0 0 ACCEPT tcp -- br1 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:53
  17. 128 44418 ACCEPT udp -- br1 * 0.0.0.0/0 0.0.0.0/0 udp dpt:67
  18. 0 0 ACCEPT udp -- br1 * 0.0.0.0/0 0.0.0.0/0 udp dpt:68
  19. 12 2207 DROP all -- br1 * 0.0.0.0/0 0.0.0.0/0
  20. 8631 499K OVPNSI all -- * * 0.0.0.0/0 0.0.0.0/0
  21. 5777 306K OVPNCI all -- * * 0.0.0.0/0 0.0.0.0/0
  22. 5777 306K DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  23.  
  24. Chain FORWARD (policy DROP 0 packets, 0 bytes)
  25. pkts bytes target prot opt in out source destination
  26. 0 0 DROP all -- br0 * 0.0.0.0/0 0.0.0.0/0 MAC EC:66:D1:07:DF:F4
  27. 0 0 DROP all -- br0 * 0.0.0.0/0 0.0.0.0/0 MAC 48:E1:E9:2B:AB:1C
  28. 5314 404K DROP all -- br0 * 0.0.0.0/0 0.0.0.0/0 MAC 40:9F:38:05:8A:E3
  29. 7415 564K DROP all -- br0 * 0.0.0.0/0 0.0.0.0/0 MAC E4:23:54:0B:9E:7C
  30. 188 14288 DROP all -- br0 * 0.0.0.0/0 0.0.0.0/0 MAC 00:7E:56:6C:7E:F6
  31. 132K 36M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
  32. 8117 555K OVPNSF all -- * * 0.0.0.0/0 0.0.0.0/0
  33. 7078 327K WGNPControls all -- br1 * 0.0.0.0/0 0.0.0.0/0
  34. 7078 327K ACCEPT all -- br1 eth0 0.0.0.0/0 0.0.0.0/0
  35. 0 0 other2wan all -- !br0 eth0 0.0.0.0/0 0.0.0.0/0
  36. 58 3759 ACCEPT all -- br0 br0 0.0.0.0/0 0.0.0.0/0
  37. 30 1200 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
  38. 27 1604 SECURITY all -- eth0 * 0.0.0.0/0 0.0.0.0/0
  39. 605 201K NSFW all -- * * 0.0.0.0/0 0.0.0.0/0
  40. 578 199K ACCEPT all -- br0 * 0.0.0.0/0 0.0.0.0/0
  41. 27 1604 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate DNAT
  42. 0 0 DNSFILTER_DOT tcp -- br+ * 0.0.0.0/0 0.0.0.0/0 tcp dpt:853
  43. 0 0 OVPNCF all -- * * 0.0.0.0/0 0.0.0.0/0
  44. 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  45.  
  46. Chain OUTPUT (policy ACCEPT 761K packets, 402M bytes)
  47. pkts bytes target prot opt in out source destination
  48. 3813 255K OUTPUT_DNS udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:53 u32 "0x0>>0x16&0x3c@0x8>>0xf&0x1=0x0"
  49. 108 12204 OUTPUT_DNS tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 u32 "0x0>>0x16&0x3c@0xc>>0x1a&0x3c@0x8>>0xf&0x1=0x0"
  50. 763K 403M OUTPUT_IP all -- * * 0.0.0.0/0 0.0.0.0/0
  51.  
  52. Chain ACCESS_RESTRICTION (0 references)
  53. pkts bytes target prot opt in out source destination
  54.  
  55. Chain DNSFILTER_DOT (1 references)
  56. pkts bytes target prot opt in out source destination
  57. 0 0 REJECT all -- * * 0.0.0.0/0 !192.168.50.1 MAC 14:7D:DA:30:D1:4E reject-with icmp-port-unreachable
  58. 0 0 REJECT all -- * * 0.0.0.0/0 !192.168.50.1 MAC C8:3C:85:DB:41:B1 reject-with icmp-port-unreachable
  59. 0 0 REJECT all -- * * 0.0.0.0/0 !192.168.50.1 MAC 98:46:0A:0D:7A:65 reject-with icmp-port-unreachable
  60. 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 MAC 60:45:CB:AD:83:00
  61. 0 0 REJECT all -- * * 0.0.0.0/0 !192.168.50.1 MAC 06:79:AE:E4:A5:AD reject-with icmp-port-unreachable
  62. 0 0 REJECT all -- * * 0.0.0.0/0 !192.168.50.1 MAC 0E:FC:D1:7F:93:AF reject-with icmp-port-unreachable
  63. 0 0 REJECT all -- * * 0.0.0.0/0 !192.168.50.3 reject-with icmp-port-unreachable
  64.  
  65. Chain FUPNP (0 references)
  66. pkts bytes target prot opt in out source destination
  67.  
  68. Chain IControls (0 references)
  69. pkts bytes target prot opt in out source destination
  70.  
  71. Chain INPUT_ICMP (1 references)
  72. pkts bytes target prot opt in out source destination
  73. 0 0 RETURN icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
  74. 0 0 RETURN icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 13
  75. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
  76.  
  77. Chain INPUT_PING (1 references)
  78. pkts bytes target prot opt in out source destination
  79. 120 9464 DROP icmp -- eth0 * 0.0.0.0/0 0.0.0.0/0
  80.  
  81. Chain NSFW (1 references)
  82. pkts bytes target prot opt in out source destination
  83.  
  84. Chain OUTPUT_DNS (2 references)
  85. pkts bytes target prot opt in out source destination
  86. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|10706f697579747975696f706b6a666e6603636f6d00|" ALGO name bm TO 65535 ICASE
  87. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|0d72666a656a6e666a6e65666a6503636f6d00|" ALGO name bm TO 65535 ICASE
  88. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|1131306166646d617361787373736171726b03636f6d00|" ALGO name bm TO 65535 ICASE
  89. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|0f376d667364666173646d6b676d726b03636f6d00|" ALGO name bm TO 65535 ICASE
  90. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|0d386d617361787373736171726b03636f6d00|" ALGO name bm TO 65535 ICASE
  91. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|0f3966646d617361787373736171726b03636f6d00|" ALGO name bm TO 65535 ICASE
  92. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|1265666274686d6f6975796b6d6b6a6b6a677403636f6d00|" ALGO name bm TO 65535 ICASE
  93. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|086861636b7563647403636f6d00|" ALGO name bm TO 65535 ICASE
  94. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|076c696e77756469056633333232036e657400|" ALGO name bm TO 65535 ICASE
  95. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|0f6c6b6a68676664736174727975696f03636f6d00|" ALGO name bm TO 65535 ICASE
  96. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|0b6d6e627663787a7a7a313203636f6d00|" ALGO name bm TO 65535 ICASE
  97. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|077131313133333303746f7000|" ALGO name bm TO 65535 ICASE
  98. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|057371353230056633333232036e657400|" ALGO name bm TO 65535 ICASE
  99. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|077563746b6f6e6503636f6d00|" ALGO name bm TO 65535 ICASE
  100. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|0e7a786376626d6e6e666a6a66777103636f6d00|" ALGO name bm TO 65535 ICASE
  101. 0 0 logdrop_dns all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|0a65756d6d6167766e627003636f6d00|" ALGO name bm TO 65535 ICASE
  102.  
  103. Chain OUTPUT_IP (1 references)
  104. pkts bytes target prot opt in out source destination
  105. 0 0 logdrop_ip all -- * * 0.0.0.0/0 193.201.224.0/24
  106. 0 0 logdrop_ip all -- * * 0.0.0.0/0 51.15.120.245
  107. 0 0 logdrop_ip all -- * * 0.0.0.0/0 45.33.73.134
  108. 0 0 logdrop_ip all -- * * 0.0.0.0/0 190.115.18.28
  109. 0 0 logdrop_ip all -- * * 0.0.0.0/0 51.159.52.250
  110. 0 0 logdrop_ip all -- * * 0.0.0.0/0 190.115.18.86
  111.  
  112. Chain OVPNCF (1 references)
  113. pkts bytes target prot opt in out source destination
  114.  
  115. Chain OVPNCI (1 references)
  116. pkts bytes target prot opt in out source destination
  117.  
  118. Chain OVPNSF (1 references)
  119. pkts bytes target prot opt in out source destination
  120. 0 0 ACCEPT all -- * tun22 0.0.0.0/0 0.0.0.0/0
  121. 0 0 ACCEPT all -- tun22 * 0.0.0.0/0 0.0.0.0/0
  122. 346 22133 ACCEPT all -- tun21 * 0.0.0.0/0 192.168.50.0/24
  123.  
  124. Chain OVPNSI (1 references)
  125. pkts bytes target prot opt in out source destination
  126. 0 0 ACCEPT all -- tun22 * 0.0.0.0/0 0.0.0.0/0
  127. 153 9228 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
  128. 2698 184K ACCEPT all -- tun21 * 0.0.0.0/0 0.0.0.0/0
  129. 3 206 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:1194
  130.  
  131. Chain PControls (0 references)
  132. pkts bytes target prot opt in out source destination
  133.  
  134. Chain PTCSRVLAN (1 references)
  135. pkts bytes target prot opt in out source destination
  136.  
  137. Chain PTCSRVWAN (1 references)
  138. pkts bytes target prot opt in out source destination
  139.  
  140. Chain SECURITY (1 references)
  141. pkts bytes target prot opt in out source destination
  142. 27 1604 RETURN tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcpflags: 0x17/0x02 limit: avg 1/sec burst 5
  143. 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcpflags: 0x17/0x02
  144. 0 0 RETURN tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcpflags: 0x17/0x04 limit: avg 1/sec burst 5
  145. 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcpflags: 0x17/0x04
  146. 0 0 RETURN icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8 limit: avg 1/sec burst 5
  147. 0 0 DROP icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
  148. 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
  149.  
  150. Chain WGNPControls (1 references)
  151. pkts bytes target prot opt in out source destination
  152. 0 0 DROP all -- br1 * 0.0.0.0/0 0.0.0.0/0 MAC EC:66:D1:07:DF:F4
  153. 0 0 DROP all -- br1 * 0.0.0.0/0 0.0.0.0/0 MAC 48:E1:E9:2B:AB:1C
  154. 0 0 DROP all -- br1 * 0.0.0.0/0 0.0.0.0/0 MAC 40:9F:38:05:8A:E3
  155. 0 0 DROP all -- br1 * 0.0.0.0/0 0.0.0.0/0 MAC E4:23:54:0B:9E:7C
  156. 0 0 DROP all -- br1 * 0.0.0.0/0 0.0.0.0/0 MAC 00:7E:56:6C:7E:F6
  157.  
  158. Chain default_block (0 references)
  159. pkts bytes target prot opt in out source destination
  160.  
  161. Chain logaccept (0 references)
  162. pkts bytes target prot opt in out source destination
  163. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 state NEW LOG flags 7 level 4 prefix "ACCEPT "
  164. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  165.  
  166. Chain logdrop (0 references)
  167. pkts bytes target prot opt in out source destination
  168. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 state NEW LOG flags 7 level 4 prefix "DROP "
  169. 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  170.  
  171. Chain logdrop_dns (16 references)
  172. pkts bytes target prot opt in out source destination
  173. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 7 level 4 prefix "DROP_DNS "
  174. 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  175.  
  176. Chain logdrop_ip (6 references)
  177. pkts bytes target prot opt in out source destination
  178. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 7 level 4 prefix "DROP_IP "
  179. 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  180.  
  181. Chain other2wan (1 references)
  182. pkts bytes target prot opt in out source destination
  183. 0 0 RETURN all -- tun+ * 0.0.0.0/0 0.0.0.0/0
  184. 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  185. admin@RT-AX86U-24F8:/tmp/home/root#
  186.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!