· 9 years ago · Aug 27, 2016, 07:56 PM
1root@router:/tmp/home/root# iptables -nL
2Chain INPUT (policy DROP)
3target prot opt source destination
4DROP all -- 0.0.0.0/0 0.0.0.0/0 state INVALID
5ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
6shlimit tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 state NEW
7ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
8ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
9ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5
10ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpts:33434:33534 limit: avg 5/sec burst 5
11
12Chain FORWARD (policy DROP)
13target prot opt source destination
14 all -- 0.0.0.0/0 0.0.0.0/0 account: network/netmask: 192.168.1.0/255.255.255.0 name: lan
15ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
16DROP all -- 0.0.0.0/0 0.0.0.0/0 state INVALID
17ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
18wanin all -- 0.0.0.0/0 0.0.0.0/0
19wanout all -- 0.0.0.0/0 0.0.0.0/0
20ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
21
22Chain OUTPUT (policy ACCEPT)
23target prot opt source destination
24
25Chain shlimit (1 references)
26target prot opt source destination
27 all -- 0.0.0.0/0 0.0.0.0/0 recent: SET name: shlimit side: source
28DROP all -- 0.0.0.0/0 0.0.0.0/0 recent: UPDATE seconds: 60 hit_count: 4 name: shlimit side: source
29
30Chain wanin (1 references)
31target prot opt source destination
32ACCEPT tcp -- 0.0.0.0/0 192.168.1.2 tcp dpt:22
33ACCEPT tcp -- 0.0.0.0/0 192.168.1.2 tcp dpt:22
34ACCEPT tcp -- 0.0.0.0/0 192.168.1.201 tcp dpt:22
35ACCEPT tcp -- 0.0.0.0/0 192.168.1.201 tcp dpt:62900
36ACCEPT udp -- 0.0.0.0/0 192.168.1.201 udp dpt:62900
37ACCEPT tcp -- 0.0.0.0/0 192.168.1.2 tcp dpts:5900:5910
38ACCEPT tcp -- 0.0.0.0/0 192.168.1.2 tcp dpt:8080
39ACCEPT tcp -- 0.0.0.0/0 192.168.1.12 tcp dpt:22
40
41Chain wanout (1 references)
42target prot opt source destination