# Generated by iptables-save v1.2.11 on Thu May 28 18:29:24 2009
*mangle
:PREROUTING ACCEPT [1666:190119]
:INPUT ACCEPT [1275:141051]
:FORWARD ACCEPT [249:41588]
:OUTPUT ACCEPT [1256:201758]
:POSTROUTING ACCEPT [1496:242914]
-A INPUT -i eth1 -p tcp -m state --state NEW -m multiport --dports 22 -j LOG
COMMIT
# Completed on Thu May 28 18:29:24 2009
# Generated by iptables-save v1.2.11 on Thu May 28 18:29:24 2009
*filter
:INPUT ACCEPT [1275:141051]
:FORWARD DROP [9:432]
:OUTPUT ACCEPT [1256:201758]
:INBOUND - [0:0]
:OUTBOUND - [0:0]
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -j REJECT --reject-with icmp-host-unreachable
-A FORWARD -i eth0 -o eth1 -j REJECT --reject-with icmp-host-unreachable
-A INPUT -i ! eth0 -m state --state NEW -j ACCEPT
-A FORWARD -o eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -o eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -s 192.168.10.x -o eth0 -m state --state NEW -j ACCEPT
-A FORWARD -p icmp -j ACCEPT
-A FORWARD -p icmp -m icmp --icmp-type 8 -m limit --limit 3/sec -j ACCEPT
-A FORWARD -p tcp -m tcp --tcp-flags SYN,RST,ACK SYN -m limit --limit 1/sec -j ACCEPT
COMMIT
# Completed on Thu May 28 18:29:24 2009
# Generated by iptables-save v1.2.11 on Thu May 28 18:29:24 2009
*nat
:PREROUTING ACCEPT [260:21815]
:POSTROUTING ACCEPT [2:696]
:OUTPUT ACCEPT [130:10510]
-A POSTROUTING -o eth0 -j SNAT --to-source 10.252.1.1
COMMIT
# Completed on Thu May 28 18:29:24 2009
~
Subscribe to:
Post Comments (Atom)
-
ကကုသန္ဓော ကောဏဂမနော ကဿပေါ ဂေါတမော မုနိဆယ်ထား ဆယ်တော်မူမြတ်စွာဘုရား မေတ္တယျော ပဉ္စဗုဒ္ဓေါတေ သိသေမေသန္တ သဗ္ဗဒါ ဧတေသံ အာနုဘာဝေန ရက္ခဒေဝါ မဟိဒ္ဓ...
-
Linux, Create File With Content & Specified Size #dd if=/dev/urandom of=3MB bs=1 count=0 seek=3M #dd if=/dev/urandom of=5MB bs=1 count...
-
1. Go to http://www.vmware.com/patchmgr/download.portal and login with your VMWare account. Download following files. - upgrade-from-E...
No comments:
Post a Comment