Advertisement
Guest User

Untitled

a guest
Oct 22nd, 2018
97
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 3.14 KB | None | 0 0
  1. ufw disabled, app disconnected
  2.  
  3. -P INPUT ACCEPT
  4. -P FORWARD ACCEPT
  5. -P OUTPUT ACCEPT
  6. -N piavpn.100.blockDNS
  7. -N piavpn.200.exemptLAN
  8. -N piavpn.500.killswitch
  9. -N piavpn.con.100.blockDNS
  10. -N piavpn.con.200.exemptLAN
  11. -N piavpn.con.500.killswitch
  12. -N ufw-after-forward
  13. -N ufw-after-input
  14. -N ufw-after-logging-forward
  15. -N ufw-after-logging-input
  16. -N ufw-after-logging-output
  17. -N ufw-after-output
  18. -N ufw-before-forward
  19. -N ufw-before-input
  20. -N ufw-before-logging-forward
  21. -N ufw-before-logging-input
  22. -N ufw-before-logging-output
  23. -N ufw-before-output
  24. -N ufw-reject-forward
  25. -N ufw-reject-input
  26. -N ufw-reject-output
  27. -N ufw-track-forward
  28. -N ufw-track-input
  29. -N ufw-track-output
  30. -A INPUT -i virbr0 -p udp -m udp --dport 53 -j ACCEPT
  31. -A INPUT -i virbr0 -p tcp -m tcp --dport 53 -j ACCEPT
  32. -A INPUT -i virbr0 -p udp -m udp --dport 67 -j ACCEPT
  33. -A INPUT -i virbr0 -p tcp -m tcp --dport 67 -j ACCEPT
  34. -A INPUT -j ufw-before-logging-input
  35. -A INPUT -j ufw-before-input
  36. -A INPUT -j ufw-after-input
  37. -A INPUT -j ufw-after-logging-input
  38. -A INPUT -j ufw-reject-input
  39. -A INPUT -j ufw-track-input
  40. -A FORWARD -d 192.168.122.0/24 -o virbr0 -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
  41. -A FORWARD -s 192.168.122.0/24 -i virbr0 -j ACCEPT
  42. -A FORWARD -i virbr0 -o virbr0 -j ACCEPT
  43. -A FORWARD -o virbr0 -j REJECT --reject-with icmp-port-unreachable
  44. -A FORWARD -i virbr0 -j REJECT --reject-with icmp-port-unreachable
  45. -A FORWARD -j ufw-before-logging-forward
  46. -A FORWARD -j ufw-before-forward
  47. -A FORWARD -j ufw-after-forward
  48. -A FORWARD -j ufw-after-logging-forward
  49. -A FORWARD -j ufw-reject-forward
  50. -A FORWARD -j ufw-track-forward
  51. -A OUTPUT -j piavpn.con.100.blockDNS
  52. -A OUTPUT -j piavpn.con.200.exemptLAN
  53. -A OUTPUT -j piavpn.con.500.killswitch
  54. -A OUTPUT -o virbr0 -p udp -m udp --dport 68 -j ACCEPT
  55. -A OUTPUT -j ufw-before-logging-output
  56. -A OUTPUT -j ufw-before-output
  57. -A OUTPUT -j ufw-after-output
  58. -A OUTPUT -j ufw-after-logging-output
  59. -A OUTPUT -j ufw-reject-output
  60. -A OUTPUT -j ufw-track-output
  61. -A piavpn.100.blockDNS -o lo+ -j ACCEPT
  62. -A piavpn.100.blockDNS -d 209.222.18.222/32 -o tun+ -p udp -m udp --dport 53 -j ACCEPT
  63. -A piavpn.100.blockDNS -d 209.222.18.222/32 -o tun+ -p tcp -m tcp --dport 53 -j ACCEPT
  64. -A piavpn.100.blockDNS -d 209.222.18.218/32 -o tun+ -p udp -m udp --dport 53 -j ACCEPT
  65. -A piavpn.100.blockDNS -d 209.222.18.218/32 -o tun+ -p tcp -m tcp --dport 53 -j ACCEPT
  66. -A piavpn.100.blockDNS -p udp -m owner --gid-owner 1002 -m udp --dport 53 -j ACCEPT
  67. -A piavpn.100.blockDNS -p tcp -m owner --gid-owner 1002 -m tcp --dport 53 -j ACCEPT
  68. -A piavpn.100.blockDNS -p udp -m udp --dport 53 -j DROP
  69. -A piavpn.100.blockDNS -p tcp -m tcp --dport 53 -j DROP
  70. -A piavpn.200.exemptLAN -d 10.0.0.0/8 -j ACCEPT
  71. -A piavpn.200.exemptLAN -d 172.16.0.0/12 -j ACCEPT
  72. -A piavpn.200.exemptLAN -d 192.168.0.0/16 -j ACCEPT
  73. -A piavpn.200.exemptLAN -d 224.0.0.0/4 -j ACCEPT
  74. -A piavpn.200.exemptLAN -d 255.255.255.255/32 -j ACCEPT
  75. -A piavpn.500.killswitch -o lo+ -j ACCEPT
  76. -A piavpn.500.killswitch -m owner --gid-owner 1002 -j ACCEPT
  77. -A piavpn.500.killswitch -p udp -m udp --sport 68 --dport 67 -j ACCEPT
  78. -A piavpn.500.killswitch ! -o tun+ -j REJECT --reject-with icmp-port-unreachable
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement