API tools faq
paste
Advertisement
ST3ALTHPSYCH0

iptables log IP

ST3ALTHPSYCH0
Mar 24th, 2017
83
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 3.95 KB | None | 0 0
raw download clone embed print report
  1. # Generated by iptables-save v1.3.5 on Fri Mar 24 11:39:13 2017
  2. *filter
  3. :INPUT DROP [61:10913]
  4. :FORWARD DROP [0:0]
  5. :OUTPUT ACCEPT [82894:17022322]
  6. :LOGGING - [0:0]
  7. :ssh - [0:0]
  8. [2297:425231] -A INPUT -i lo -j ACCEPT
  9. [80126:16336900] -A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
  10. [1:40] -A INPUT -m conntrack --ctstate INVALID -j DROP
  11. [0:0] -A INPUT -p tcp -m tcp --dport 19 -j ssh
  12. [4322:864503] -A INPUT -j LOGGING
  13. [2:1950] -A INPUT -s 64.136.173.31 -i eth0 -p udp -m udp -m multiport --dports 5060,5061 -j ACCEPT
  14. [0:0] -A INPUT -s 64.136.174.30 -i eth0 -p udp -m udp -m multiport --dports 5060,5061 -j ACCEPT
  15. [0:0] -A INPUT -s 209.166.154.70 -i eth0 -p udp -m udp -m multiport --dports 5060,5061 -j ACCEPT
  16. [4215:843000] -A INPUT -s 104.192.64.0/255.255.248.0 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  17. [0:0] -A INPUT -s 68.169.169.0/255.255.255.0 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,5063,5065,5066,5067,5068,5069,10000:20000 -j ACCEPT
  18. [0:0] -A INPUT -s 108.174.105.177 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  19. [10:2000] -A INPUT -s 173.247.19.21 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  20. [4:800] -A INPUT -s 173.166.244.106 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  21. [0:0] -A INPUT -s 74.221.189.40 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  22. [0:0] -A INPUT -s 68.42.4.138 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  23. [0:0] -A INPUT -s 75.130.71.66 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  24. [0:0] -A INPUT -s 24.107.250.225 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  25. [0:0] -A INPUT -s 24.107.250.2 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  26. [0:0] -A INPUT -s 96.4.234.152 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  27. [0:0] -A INPUT -s 104.128.160.214 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  28. [0:0] -A INPUT -s 64.18.111.254 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  29. [0:0] -A INPUT -s 68.59.133.69 -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j ACCEPT
  30. [0:0] -A INPUT -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -m iprange --src-range 96.4.234.129-96.4.234.159 -j ACCEPT
  31. [29:5800] -A INPUT -i eth0 -p udp -m udp -m multiport --dports 69,5060,5061,10000:20000 -j DROP
  32. [0:0] -A INPUT -i eth0 -p tcp -m tcp --dport 80 -m state --state NEW -m iprange --src-range 104.192.66.239-104.192.66.244 -j ACCEPT
  33. [0:0] -A INPUT -i eth0 -p tcp -m tcp --dport 80 -m state --state NEW -m iprange --src-range 96.4.234.129-96.4.234.159 -j ACCEPT
  34. [0:0] -A INPUT -s 68.42.4.138 -i eth0 -p tcp -m tcp --dport 80 -m state --state NEW -j ACCEPT
  35. [0:0] -A INPUT -s 172.78.87.85 -i eth0 -p tcp -m tcp --dport 80 -m state --state NEW -j ACCEPT
  36. [0:0] -A INPUT -s 165.138.70.222 -i eth0 -p tcp -m tcp --dport 80 -m state --state NEW -j ACCEPT
  37. [1:40] -A INPUT -i eth0 -p tcp -m tcp --dport 80 -m state --state NEW -j DROP
  38. [0:0] -A INPUT -p icmp -m icmp --icmp-type 8 -m state --state NEW -j DROP
  39. [0:0] -A LOGGING -s 64.18.111.245 -m conntrack --ctstate NEW -j LOG --log-prefix "Traffic from 64.18.111.245: "
  40. [0:0] -A LOGGING -s 64.18.111.245 -j ACCEPT
  41. [0:0] -A ssh -p tcp -m tcp --dport 19 -m conntrack --ctstate NEW -m recent --set --name SSH --rsource
  42. [0:0] -A ssh -p tcp -m tcp --dport 19 -m conntrack --ctstate NEW -m recent --update --seconds 30 --hitcount 6 --rttl --name SSH --rsource -j LOG --log-prefix "SSH break in attempt "
  43. [0:0] -A ssh -p tcp -m tcp --dport 19 -m conntrack --ctstate NEW -m recent --update --seconds 30 --hitcount 6 --rttl --name SSH --rsource -j DROP
  44. [0:0] -A ssh -p tcp -m tcp --dport 19 -j ACCEPT
  45. COMMIT
  46. # Completed on Fri Mar 24 11:39:13 2017
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!