API tools faq
paste
Advertisement
Guest User

UFW iptables rules

a guest
Oct 2nd, 2021
58
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 12.89 KB | None | 0 0
raw download clone embed print report
  1. Chain INPUT (policy DROP 0 packets, 0 bytes)
  2. pkts bytes target prot opt in out source destination
  3. 679 905837 ufw-before-logging-input all -- * * 0.0.0.0/0 0.0.0.0/0
  4. 679 905837 ufw-before-input all -- * * 0.0.0.0/0 0.0.0.0/0
  5. 80 4670 ufw-after-input all -- * * 0.0.0.0/0 0.0.0.0/0
  6. 0 0 ufw-after-logging-input all -- * * 0.0.0.0/0 0.0.0.0/0
  7. 0 0 ufw-reject-input all -- * * 0.0.0.0/0 0.0.0.0/0
  8. 0 0 ufw-track-input all -- * * 0.0.0.0/0 0.0.0.0/0
  9.  
  10. Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
  11. pkts bytes target prot opt in out source destination
  12. 0 0 ufw-before-logging-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  13. 0 0 ufw-before-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  14. 0 0 ufw-after-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  15. 0 0 ufw-after-logging-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  16. 0 0 ufw-reject-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  17. 0 0 ufw-track-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  18.  
  19. Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
  20. pkts bytes target prot opt in out source destination
  21. 376 25420 ufw-before-logging-output all -- * * 0.0.0.0/0 0.0.0.0/0
  22. 376 25420 ufw-before-output all -- * * 0.0.0.0/0 0.0.0.0/0
  23. 23 1629 ufw-after-output all -- * * 0.0.0.0/0 0.0.0.0/0
  24. 23 1629 ufw-after-logging-output all -- * * 0.0.0.0/0 0.0.0.0/0
  25. 23 1629 ufw-reject-output all -- * * 0.0.0.0/0 0.0.0.0/0
  26. 23 1629 ufw-track-output all -- * * 0.0.0.0/0 0.0.0.0/0
  27.  
  28. Chain ufw-after-forward (1 references)
  29. pkts bytes target prot opt in out source destination
  30.  
  31. Chain ufw-after-input (1 references)
  32. pkts bytes target prot opt in out source destination
  33. 2 156 ufw-skip-to-policy-input udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:137
  34. 4 962 ufw-skip-to-policy-input udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:138
  35. 0 0 ufw-skip-to-policy-input tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:139
  36. 0 0 ufw-skip-to-policy-input tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:445
  37. 0 0 ufw-skip-to-policy-input udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:67
  38. 0 0 ufw-skip-to-policy-input udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:68
  39. 74 3552 ufw-skip-to-policy-input all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
  40.  
  41. Chain ufw-after-logging-forward (1 references)
  42. pkts bytes target prot opt in out source destination
  43. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  44.  
  45. Chain ufw-after-logging-input (1 references)
  46. pkts bytes target prot opt in out source destination
  47. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  48.  
  49. Chain ufw-after-logging-output (1 references)
  50. pkts bytes target prot opt in out source destination
  51.  
  52. Chain ufw-after-output (1 references)
  53. pkts bytes target prot opt in out source destination
  54.  
  55. Chain ufw-before-forward (1 references)
  56. pkts bytes target prot opt in out source destination
  57. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  58. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 3
  59. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 11
  60. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 12
  61. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
  62. 0 0 ufw-user-forward all -- * * 0.0.0.0/0 0.0.0.0/0
  63.  
  64. Chain ufw-before-input (1 references)
  65. pkts bytes target prot opt in out source destination
  66. 112 8844 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
  67. 487 892323 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  68. 0 0 ufw-logging-deny all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID
  69. 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID
  70. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 3
  71. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 11
  72. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 12
  73. 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
  74. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp spt:67 dpt:68
  75. 80 4670 ufw-not-local all -- * * 0.0.0.0/0 0.0.0.0/0
  76. 0 0 ACCEPT udp -- * * 0.0.0.0/0 224.0.0.251 udp dpt:5353
  77. 0 0 ACCEPT udp -- * * 0.0.0.0/0 239.255.255.250 udp dpt:1900
  78. 80 4670 ufw-user-input all -- * * 0.0.0.0/0 0.0.0.0/0
  79.  
  80. Chain ufw-before-logging-forward (1 references)
  81. pkts bytes target prot opt in out source destination
  82.  
  83. Chain ufw-before-logging-input (1 references)
  84. pkts bytes target prot opt in out source destination
  85.  
  86. Chain ufw-before-logging-output (1 references)
  87. pkts bytes target prot opt in out source destination
  88.  
  89. Chain ufw-before-output (1 references)
  90. pkts bytes target prot opt in out source destination
  91. 112 8844 ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0
  92. 241 14947 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  93. 23 1629 ufw-user-output all -- * * 0.0.0.0/0 0.0.0.0/0
  94.  
  95. Chain ufw-logging-allow (0 references)
  96. pkts bytes target prot opt in out source destination
  97. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW ALLOW] "
  98.  
  99. Chain ufw-logging-deny (2 references)
  100. pkts bytes target prot opt in out source destination
  101. 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate INVALID limit: avg 3/min burst 10
  102. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  103.  
  104. Chain ufw-not-local (1 references)
  105. pkts bytes target prot opt in out source destination
  106. 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type LOCAL
  107. 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type MULTICAST
  108. 80 4670 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
  109. 0 0 ufw-logging-deny all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10
  110. 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  111.  
  112. Chain ufw-reject-forward (1 references)
  113. pkts bytes target prot opt in out source destination
  114.  
  115. Chain ufw-reject-input (1 references)
  116. pkts bytes target prot opt in out source destination
  117.  
  118. Chain ufw-reject-output (1 references)
  119. pkts bytes target prot opt in out source destination
  120.  
  121. Chain ufw-skip-to-policy-forward (0 references)
  122. pkts bytes target prot opt in out source destination
  123. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  124.  
  125. Chain ufw-skip-to-policy-input (7 references)
  126. pkts bytes target prot opt in out source destination
  127. 80 4670 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
  128.  
  129. Chain ufw-skip-to-policy-output (0 references)
  130. pkts bytes target prot opt in out source destination
  131. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  132.  
  133. Chain ufw-track-forward (1 references)
  134. pkts bytes target prot opt in out source destination
  135. 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  136. 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  137.  
  138. Chain ufw-track-input (1 references)
  139. pkts bytes target prot opt in out source destination
  140.  
  141. Chain ufw-track-output (1 references)
  142. pkts bytes target prot opt in out source destination
  143. 3 180 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  144. 20 1449 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  145.  
  146. Chain ufw-user-forward (1 references)
  147. pkts bytes target prot opt in out source destination
  148.  
  149. Chain ufw-user-input (1 references)
  150. pkts bytes target prot opt in out source destination
  151. 0 0 tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 ctstate NEW recent: SET name: DEFAULT side: source mask: 255.255.255.255
  152. 0 0 ufw-user-limit tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 ctstate NEW recent: UPDATE seconds: 30 hit_count: 6 name: DEFAULT side: source mask: 255.255.255.255
  153. 0 0 ufw-user-limit-accept tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22
  154.  
  155. Chain ufw-user-limit (1 references)
  156. pkts bytes target prot opt in out source destination
  157. 0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 LOG flags 0 level 4 prefix "[UFW LIMIT BLOCK] "
  158. 0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
  159.  
  160. Chain ufw-user-limit-accept (1 references)
  161. pkts bytes target prot opt in out source destination
  162. 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
  163.  
  164. Chain ufw-user-logging-forward (0 references)
  165. pkts bytes target prot opt in out source destination
  166.  
  167. Chain ufw-user-logging-input (0 references)
  168. pkts bytes target prot opt in out source destination
  169.  
  170. Chain ufw-user-logging-output (0 references)
  171. pkts bytes target prot opt in out source destination
  172.  
  173. Chain ufw-user-output (1 references)
  174. pkts bytes target prot opt in out source destination
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!