-
Notifications
You must be signed in to change notification settings - Fork 4
/
Copy pathreference-input
39 lines (39 loc) · 2.02 KB
/
reference-input
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
# Generated by iptables-save v1.4.14 on Thu Nov 1 00:17:11 2012
*filter
:INPUT ACCEPT [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
:IPSEC - [0:0]
[9:10] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 23 -j ACCEPT
[110:1234] -A INPUT -p tcp -m tcp --sport 1024:65535 --dport 21 -j ACCEPT
[50:2323] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 50 -j DROP
[9:10] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 23 -j ACCEPT
[1:230] -A INPUT -p tcp -m tcp --sport 1024:65535 --dport 20 -j ACCEPT
[1630:2323] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 23 -j ACCEPT
[150:2323] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 750 -j ACCEPT
[10:2323] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 10 -j ACCEPT
[41:90] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 41 -j ACCEPT
[42:90] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 42 -j ACCEPT
[43:90] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 43 -j ACCEPT
[50:2323] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 50 -j DROP
[60:2323] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 60 -j ACCEPT
[70:2323] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 70 -j ACCEPT
[1:2323] -A INPUT -p tcp -m tcp --sport 1024:65535 --dport 23 -j ACCEPT
[280:2200] -A INPUT -i lo -j ACCEPT
[3:30] -A INPUT -p tcp -m tcp --sport 0:65535 --dport 24 -j DROP
[32:1260] -A INPUT -i eth3 -j ACCEPT
[3:260] -A INPUT -i eth2 -j ACCEPT
[1:123] -A FORWARD -s 10.0.0.0/8 -d 192.168.216.0/24 -j ACCEPT
[2:123] -A FORWARD -i eth1 -o eth1 -j ACCEPT
[3:123] -A FORWARD -i eth2 -o eth2 -j ACCEPT
[4:123] -A FORWARD -i eth3 -o eth3 -j ACCEPT
[1:123] -A FORWARD -j IPSEC
[10:10] -A OUTPUT -o lo -j ACCEPT
[20:20] -A OUTPUT -p tcp -m tcp --sport 21 --dport 1024:65535 -j ACCEPT
[200:0] -A OUTPUT -p tcp -m tcp --sport 20 --dport 1024:65535 -j ACCEPT
[50:123] -A OUTPUT -p tcp -m tcp --sport 23 --dport 1024:65535 -j ACCEPT
[80:123] -A OUTPUT -p tcp -m tcp --dport 25 -j REJECT
[50:123] -A OUTPUT -p tcp -m tcp --dport 25 -j ACCEPT
[11:1123] -A IPSEC -j ACCEPT
COMMIT
# Completed on Thu Nov 1 00:17:13 2012