fH1b0QvN

· 4 years ago · Nov 24, 2020, 09:58 PM
1# Generated by xtables-save v1.8.2 on Tue Nov 24 18:50:54 2020
2*filter
3:INPUT DROP [20:1064]
4:FORWARD DROP [0:0]
5:OUTPUT ACCEPT [55:7992]
6[0:0] -A INPUT -s 192.168.1.0/24 -i enp1s0 -p udp -m udp --dport 67 -m conntrack --ctstate NEW -j ACCEPT
7[0:0] -A INPUT -i lo -j ACCEPT
8[25:2193] -A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
9[1:84] -A INPUT -p icmp -m icmp --icmp-type 8 -m hashlimit --hashlimit-upto 5/sec --hashlimit-burst 5 --hashlimit-mode srcip --hashlimit-name icmp-echo-drop -j ACCEPT
10[0:0] -A INPUT -s 192.168.1.0/24 -i enp1s0 -p tcp -m tcp --dport 22 -m conntrack --ctstate NEW -j ACCEPT
11[0:0] -A INPUT -s 192.168.1.0/24 -i enp1s0 -p tcp -m tcp --dport 53 -m conntrack --ctstate NEW -j ACCEPT
12[22:1730] -A INPUT -s 192.168.1.0/24 -i enp1s0 -p udp -m udp --dport 53 -m conntrack --ctstate NEW -j ACCEPT
13[3:228] -A INPUT -s 192.168.1.0/24 -i enp1s0 -p udp -m udp --dport 123 -m conntrack --ctstate NEW -j ACCEPT
14[174:33183] -A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
15[19:1512] -A FORWARD -s 192.168.1.0/24 -i enp1s0 -o ppp0 -m conntrack --ctstate NEW -j ACCEPT
16[0:0] -A FORWARD -o ppp0 -p tcp -m tcp --dport 853 -j REJECT --reject-with icmp-port-unreachable
17COMMIT
18# Completed on Tue Nov 24 18:50:54 2020
19# Generated by xtables-save v1.8.2 on Tue Nov 24 18:50:54 2020
20*nat
21:PREROUTING ACCEPT [52146:5441236]
22:INPUT ACCEPT [25776:1958156]
23:POSTROUTING ACCEPT [267:17186]
24:OUTPUT ACCEPT [26469:2174700]
25[12:720] -A PREROUTING -i ppp0 -p tcp -m tcp --dport 4242 -j DNAT --to-destination 192.168.1.1:22
26[0:0] -A PREROUTING ! -s 192.168.1.1/32 -p tcp -m tcp --dport 53 -j DNAT --to-destination 192.168.1.1:53
27[21:1655] -A PREROUTING ! -s 192.168.1.1/32 -p udp -m udp --dport 53 -j DNAT --to-destination 192.168.1.1:53
28[1:76] -A PREROUTING ! -s 192.168.1.1/32 -p udp -m udp --dport 123 -j DNAT --to-destination 192.168.1.1:123
29[30:2465] -A POSTROUTING -o ppp0 -j MASQUERADE
30COMMIT
31# Completed on Tue Nov 24 18:50:54 2020
32# Generated by xtables-save v1.8.2 on Tue Nov 24 18:50:54 2020
33*mangle
34:PREROUTING ACCEPT [8168051:7338846393]
35:INPUT ACCEPT [211906:198872248]
36:FORWARD ACCEPT [7955362:7139055991]
37:OUTPUT ACCEPT [117101:14733818]
38:POSTROUTING ACCEPT [8071117:7153728786]
39[3:168] -A FORWARD -o ppp0 -p tcp -m tcp --tcp-flags SYN,RST SYN -m tcpmss --mss 1400:65495 -j TCPMSS --clamp-mss-to-pmtu
40COMMIT
41# Completed on Tue Nov 24 18:50:54 2020