Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- root@debian:~# iptables-save
- # Generated by iptables-save v1.4.14 on Fri Jul 31 18:14:59 2015
- *mangle
- :PREROUTING ACCEPT [1767060:502362621]
- :INPUT ACCEPT [1767060:502362621]
- :FORWARD ACCEPT [0:0]
- :OUTPUT ACCEPT [1554868:327234679]
- :POSTROUTING ACCEPT [1554868:327234679]
- COMMIT
- # Completed on Fri Jul 31 18:14:59 2015
- # Generated by iptables-save v1.4.14 on Fri Jul 31 18:14:59 2015
- *nat
- :PREROUTING ACCEPT [139289:7773596]
- :INPUT ACCEPT [63727:3815588]
- :OUTPUT ACCEPT [92304:6434023]
- :POSTROUTING ACCEPT [92304:6434023]
- COMMIT
- # Completed on Fri Jul 31 18:14:59 2015
- # Generated by iptables-save v1.4.14 on Fri Jul 31 18:14:59 2015
- *filter
- :INPUT DROP [76097:3982210]
- :FORWARD DROP [0:0]
- :OUTPUT ACCEPT [142584:8821820]
- -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
- -A INPUT -i lo -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 51238 -m state --state NEW -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 51239 -m state --state NEW -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 23432 -m state --state NEW -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 38000 -m state --state NEW -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 80 -m state --state NEW -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 443 -m state --state NEW -j ACCEPT
- -A INPUT -m limit --limit 3/sec --limit-burst 3 -j LOG --log-prefix "FW_INPUT: "
- -A INPUT -p icmp -m icmp --icmp-type any -j DROP
- -A FORWARD -p icmp -m icmp --icmp-type any -j DROP
- -A OUTPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
- -A OUTPUT -p icmp -m icmp --icmp-type any -j DROP
- COMMIT
- # Completed on Fri Jul 31 18:14:59 2015
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
