i36GvDjg

· 7 years ago · Apr 16, 2018, 05:58 PM
1slicktux ~ # iptables -t filter -L
2Chain INPUT (policy ACCEPT)
3target     prot opt source               destination         
4ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED 
5ACCEPT     all  --  anywhere             anywhere            
6ACCEPT     udp  --  anywhere             anywhere            udp spt:bootpc dpt:bootps 
7DROP       tcp  --  anywhere             anywhere            tcp dpt:kazaa 
8DROP       udp  --  anywhere             anywhere            udp dpt:kazaa 
9LOG        udp  --  anywhere             anywhere            state NEW udp dpts:0:52 LOG level warning prefix `LOW UDP: ' 
10LOG        udp  --  anywhere             anywhere            state NEW udp dpts:xns-ch:1023 LOG level warning prefix `LOW UDP: ' 
11LOG        udp  --  anywhere             anywhere            state NEW udp dpts:1024:65535 LOG level warning prefix `HIGH UDP: ' 
12LOG        tcp  --  anywhere             anywhere            state NEW tcp dpts:1024:2699 LOG level warning prefix `HIGH TCP:' 
13LOG        tcp  --  anywhere             anywhere            state NEW tcp dpts:2721:6881 LOG level warning prefix `HIGH TCP:' 
14LOG        tcp  --  anywhere             anywhere            state NEW tcp dpts:6889:43065 LOG level warning prefix `HIGH TCP:' 
15LOG        tcp  --  anywhere             anywhere            state NEW tcp dpts:43067:65535 LOG level warning prefix `HIGH TCP:' 
16LOG        icmp --  anywhere             anywhere            LOG level warning prefix `ECHO: (PING,PONG) ' 
17limit10    udp  --  anywhere             anywhere            udp dpt:ntp 
18ACCEPT     udp  --  anywhere             anywhere            udp spt:ntp 
19ACCEPT     tcp  --  anywhere             anywhere            tcp spt:ssh flags:!FIN,SYN,RST,ACK/SYN 
20
21Chain FORWARD (policy ACCEPT)
22target     prot opt source               destination         
23ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED 
24ACCEPT     all  --  anywhere             anywhere            
25limit1000  tcp  --  anywhere             anywhere            tcp dpts:epmap:netbios-ssn 
26ACCEPT     udp  --  anywhere             anywhere            udp dpts:epmap:netbios-ssn 
27limit10    tcp  --  anywhere             anywhere            tcp dpt:microsoft-ds 
28limit100   tcp  --  anywhere             anywhere            tcp dpt:ssh 
29limit1000  tcp  --  anywhere             anywhere            tcp dpt:domain 
30ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:domain 
31limit1000  tcp  --  anywhere             anywhere            tcp dpt:http 
32limit50    tcp  --  anywhere             anywhere            tcp dpt:ircd 
33limit10    tcp  --  anywhere             anywhere            tcp dpt:auth 
34ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:auth 
35ACCEPT     tcp  --  192.168.1.122        anywhere            tcp dpts:43084:43092 
36
37Chain OUTPUT (policy ACCEPT)
38target     prot opt source               destination         
39ACCEPT     all  --  anywhere             anywhere            
40
41Chain limit1 (0 references)
42target     prot opt source               destination         
43ACCEPT     tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 1/sec burst 5 
44ACCEPT     tcp  --  anywhere             anywhere            tcp flags:!FIN,SYN,RST,ACK/SYN 
45
46Chain limit10 (3 references)
47target     prot opt source               destination         
48ACCEPT     tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 10/sec burst 5 
49ACCEPT     tcp  --  anywhere             anywhere            tcp flags:!FIN,SYN,RST,ACK/SYN 
50
51Chain limit100 (1 references)
52target     prot opt source               destination         
53ACCEPT     tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 100/sec burst 5 
54ACCEPT     tcp  --  anywhere             anywhere            tcp flags:!FIN,SYN,RST,ACK/SYN 
55
56Chain limit1000 (3 references)
57target     prot opt source               destination         
58ACCEPT     tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 1000/sec burst 5 
59ACCEPT     tcp  --  anywhere             anywhere            tcp flags:!FIN,SYN,RST,ACK/SYN 
60
61Chain limit50 (1 references)
62target     prot opt source               destination         
63ACCEPT     tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 50/sec burst 5 
64ACCEPT     tcp  --  anywhere             anywhere            tcp flags:!FIN,SYN,RST,ACK/SYN 
65
66
67slicktux ~ # iptables -t nat -L
68Chain PREROUTING (policy ACCEPT)
69target     prot opt source               destination         
70DNAT       tcp  --  anywhere             anywhere            tcp dpts:43067:43083 to:192.168.0.133 
71DNAT       tcp  --  anywhere             anywhere            tcp dpts:43084:43092 to:192.168.0.122 
72
73Chain POSTROUTING (policy ACCEPT)
74target     prot opt source               destination         
75MASQUERADE  all  --  anywhere             anywhere            
76
77Chain OUTPUT (policy ACCEPT)
78target     prot opt source               destination   
79
80
81slicktux ~ # iptables -t mangle -L
82Chain PREROUTING (policy ACCEPT)
83target     prot opt source               destination         
84
85Chain INPUT (policy ACCEPT)
86target     prot opt source               destination         
87
88Chain FORWARD (policy ACCEPT)
89target     prot opt source               destination         
90
91Chain OUTPUT (policy ACCEPT)
92target     prot opt source               destination         
93
94Chain POSTROUTING (policy ACCEPT)
95target     prot opt source               destination