41 lines
1.7 KiB
Plaintext
41 lines
1.7 KiB
Plaintext
# Generated by iptables-save v1.4.21 on Tue Aug 1 10:52:57 2017
|
|
*nat
|
|
:PREROUTING ACCEPT [336:62489]
|
|
:INPUT ACCEPT [302:37047]
|
|
:OUTPUT ACCEPT [405:24205]
|
|
:POSTROUTING ACCEPT [405:24205]
|
|
COMMIT
|
|
# Completed on Tue Aug 1 10:52:57 2017
|
|
# Generated by iptables-save v1.4.21 on Tue Aug 1 10:52:57 2017
|
|
*filter
|
|
:INPUT DROP [0:0]
|
|
:FORWARD DROP [0:0]
|
|
:OUTPUT ACCEPT [4236:1017174]
|
|
-A INPUT -s 89.121.131.74/32 -p tcp -m tcp --dport 22 -j ACCEPT
|
|
-A INPUT -s 86.104.210.218/32 -p tcp -m tcp --dport 22 -j ACCEPT
|
|
-A INPUT -s 185.47.62.100/32 -p tcp -m tcp --dport 22 -j ACCEPT
|
|
-A INPUT -s 185.112.156.227/32 -p tcp -m tcp --dport 22 -j ACCEPT
|
|
-A INPUT -s 86.104.210.218/32 -p udp -m udp --dport 161 -j ACCEPT
|
|
-A INPUT -s 185.112.156.227/32 -p tcp -m tcp --dport 8197 -j ACCEPT
|
|
-A INPUT -i lo -j ACCEPT
|
|
-A INPUT -d 127.0.0.0/8 -j REJECT --reject-with icmp-port-unreachable
|
|
-A INPUT -p icmp -m icmp --icmp-type 17 -j DROP
|
|
-A INPUT -p icmp -m icmp --icmp-type 13 -j DROP
|
|
-A INPUT -p icmp -m icmp --icmp-type 8 -m limit --limit 1/sec -j ACCEPT
|
|
-A INPUT -p tcp -m tcp ! --tcp-flags FIN,SYN,RST,ACK SYN -m state --state NEW -j DROP
|
|
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG NONE -j DROP
|
|
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG FIN,SYN,RST,PSH,ACK,URG -j DROP
|
|
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
|
|
-A INPUT -m state --state INVALID -j DROP
|
|
COMMIT
|
|
# Completed on Tue Aug 1 10:52:57 2017
|
|
# Generated by iptables-save v1.4.21 on Tue Aug 1 10:52:57 2017
|
|
*mangle
|
|
:PREROUTING ACCEPT [13701:9224005]
|
|
:INPUT ACCEPT [13701:9224005]
|
|
:FORWARD ACCEPT [0:0]
|
|
:OUTPUT ACCEPT [11672:3002622]
|
|
:POSTROUTING ACCEPT [11672:3002622]
|
|
COMMIT
|
|
# Completed on Tue Aug 1 10:52:57 2017
|