API tools faq
paste
Guest User

Untitled

a guest
Dec 17th, 2018
107
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.96 KB | None | 0 0
raw download clone embed print report
  1. -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
  2. -A INPUT -p icmp -j REJECT
  3. -A INPUT -i lo -j ACCEPT
  4.  
  5. -A INPUT -p tcp -s 10.32.5.0/24 -m state --state NEW,ESTABLISH -m tcp -m multiport --dports 22,25 -j ACCEPT
  6. -A INPUT -p udp -s 10.32.6.0/24,10.32.14.0/24,10.32.9.0/24,10.32.13.0/24,10.32.8.0/24,192.168.1.0/24 -m state --state NEW,ESTABLISH -m udp -m multiport --dports 514,11,12,5140,5141,5142,5143,5144,5145,69 -j DROP
  7. -A INPUT -p udp -m state --state NEW,ESTABLISH -m udp -m multiport --dports 514,11,12,5140,5141,5142,5143,5144,5145,69 -j ACCEPT
  8.  
  9.  
  10. -A OUTPUT -o lo -j ACCEPT
  11. -A OUTPUT -o br-4457313349ab -j ACCEPT
  12.  
  13. -A OUTPUT -o enp2s0 -p icmp -d 10.32.5.0/24 -j ACCEPT
  14. -A OUTPUT -o enp2s0 -p tcp -m state --state NEW,ESTABLISHED -j ACCEPT
  15. -A OUTPUT -o enp2s0 -p udp -m state --state NEW,ESTABLISHED -j ACCEPT
  16.  
  17. -N LOGGING
  18. -A INPUT -j LOGGING
  19. -A OUTPUT -j LOGGING
  20. -A LOGGING -m limit --limit 2/min -j LOG --log-prefix "IPTables-Dropped: " --log-level 4
  21. -A LOGGING -j DROP
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!