XyMon

bsg - iptables

Wed May 01 2024, 22:45:59


 

Mi 1. Mai 22:45:59 CEST 2024





filter




Chain INPUT (policy DROP)
target     prot opt source               destination         
loc-fw     0    --  0.0.0.0/0            0.0.0.0/0           
net-fw     0    --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     0    --  0.0.0.0/0            0.0.0.0/0            -m iface --dev-in --loopback 
DROP       0    --  0.0.0.0/0            0.0.0.0/0           

Chain FORWARD (policy DROP)
target     prot opt source               destination         
loc_frwd   0    --  0.0.0.0/0            0.0.0.0/0           
net-loc    0    --  0.0.0.0/0            0.0.0.0/0           
DROP       0    --  0.0.0.0/0            0.0.0.0/0           

Chain OUTPUT (policy DROP)
target     prot opt source               destination         
fw-loc     0    --  0.0.0.0/0            0.0.0.0/0           
fw-net     0    --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     0    --  0.0.0.0/0            0.0.0.0/0            -m iface --dev-out --loopback 
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type BROADCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type ANYCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type MULTICAST
LOG        0    --  0.0.0.0/0            0.0.0.0/0            limit: up to 1/sec burst 10 mode srcip LOG flags 0 level 6 prefix "Shorewall OUTPUT DROP "
DROP       0    --  0.0.0.0/0            0.0.0.0/0           

Chain dynamic (5 references)
target     prot opt source               destination         

Chain fw-loc (1 references)
target     prot opt source               destination         
ACCEPT     0    --  0.0.0.0/0            0.0.0.0/0            ctstate RELATED,ESTABLISHED
ACCEPT     1    --  0.0.0.0/0            0.0.0.0/0            icmptype 8
ACCEPT     17   --  0.0.0.0/0            0.0.0.0/0            multiport dports 12,33434:33500
ACCEPT     6    --  0.0.0.0/0            0.0.0.0/0            multiport dports 21,53 /* FTP and others */
ACCEPT     17   --  0.0.0.0/0            0.0.0.0/0            udp dpt:53
ACCEPT     6    --  0.0.0.0/0            0.0.0.0/0            tcp dpt:80
ACCEPT     17   --  0.0.0.0/0            0.0.0.0/0            udp dpt:123
ACCEPT     6    --  0.0.0.0/0            0.0.0.0/0            multiport dports 443,873,8080
ACCEPT     6    --  0.0.0.0/0            192.168.9.2          tcp dpt:25
ACCEPT     6    --  0.0.0.0/0            10.0.0.10            tcp dpt:1984
ACCEPT     6    --  0.0.0.0/0            10.0.0.1             multiport dports 1984,3100
ACCEPT     6    --  0.0.0.0/0            192.168.9.10         tcp dpt:1984
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type BROADCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type ANYCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type MULTICAST
LOG        0    --  0.0.0.0/0            0.0.0.0/0            limit: up to 1/sec burst 10 mode srcip LOG flags 0 level 6 prefix "Shorewall fw-loc DROP "
DROP       0    --  0.0.0.0/0            0.0.0.0/0           

Chain fw-net (1 references)
target     prot opt source               destination         
ACCEPT     0    --  0.0.0.0/0            0.0.0.0/0            ctstate RELATED,ESTABLISHED
ACCEPT     1    --  0.0.0.0/0            0.0.0.0/0            icmptype 8
ACCEPT     17   --  0.0.0.0/0            0.0.0.0/0            multiport dports 12,33434:33500
ACCEPT     6    --  0.0.0.0/0            0.0.0.0/0            multiport dports 21,53 /* FTP and others */
ACCEPT     17   --  0.0.0.0/0            0.0.0.0/0            udp dpt:53
ACCEPT     6    --  0.0.0.0/0            0.0.0.0/0            tcp dpt:80
ACCEPT     17   --  0.0.0.0/0            0.0.0.0/0            udp dpt:123
ACCEPT     6    --  0.0.0.0/0            0.0.0.0/0            multiport dports 443,873,8080
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type BROADCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type ANYCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type MULTICAST
LOG        0    --  0.0.0.0/0            0.0.0.0/0            limit: up to 1/sec burst 10 mode srcip LOG flags 0 level 6 prefix "Shorewall fw-net DROP "
DROP       0    --  0.0.0.0/0            0.0.0.0/0           

Chain loc-fw (1 references)
target     prot opt source               destination         
dynamic    0    --  0.0.0.0/0            0.0.0.0/0            ctstate INVALID,NEW,UNTRACKED
tcpflags   6    --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     0    --  0.0.0.0/0            0.0.0.0/0            ctstate RELATED,ESTABLISHED
ACCEPT     1    --  0.0.0.0/0            0.0.0.0/0            icmptype 8
ACCEPT     17   --  0.0.0.0/0            0.0.0.0/0            multiport dports 12,33434:33500
ACCEPT     6    --  192.168.9.10         0.0.0.0/0            multiport dports 3000,9100,22222
ACCEPT     0    --  192.168.9.8          0.0.0.0/0           
ACCEPT     0    --  192.168.9.10         0.0.0.0/0           
DROP       0    --  0.0.0.0/0            194.8.222.56/29     
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type BROADCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type ANYCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type MULTICAST
LOG        0    --  0.0.0.0/0            0.0.0.0/0            limit: up to 1/sec burst 10 mode srcip LOG flags 0 level 6 prefix "Shorewall loc-fw DROP "
DROP       0    --  0.0.0.0/0            0.0.0.0/0           

Chain loc-loc (1 references)
target     prot opt source               destination         
dynamic    0    --  0.0.0.0/0            0.0.0.0/0            ctstate INVALID,NEW,UNTRACKED
tcpflags   6    --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     0    --  0.0.0.0/0            0.0.0.0/0           

Chain loc-net (1 references)
target     prot opt source               destination         
dynamic    0    --  0.0.0.0/0            0.0.0.0/0            ctstate INVALID,NEW,UNTRACKED
tcpflags   6    --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     0    --  0.0.0.0/0            0.0.0.0/0            ctstate RELATED,ESTABLISHED
ACCEPT     1    --  0.0.0.0/0            0.0.0.0/0            icmptype 8
ACCEPT     17   --  0.0.0.0/0            0.0.0.0/0            multiport dports 12,33434:33500
ACCEPT     6    --  192.168.9.2          0.0.0.0/0            multiport dports 21,25,43,53 /* FTP and others */
ACCEPT     17   --  192.168.9.2          0.0.0.0/0            udp dpt:53
ACCEPT     6    --  192.168.9.2          0.0.0.0/0            tcp dpt:80
ACCEPT     17   --  192.168.9.2          0.0.0.0/0            udp dpt:123
ACCEPT     6    --  192.168.9.2          0.0.0.0/0            multiport dports 443,465,587,2703
ACCEPT     17   --  192.168.9.2          0.0.0.0/0            udp dpt:6277
ACCEPT     6    --  192.168.9.2          0.0.0.0/0            tcp dpt:8080
ACCEPT     17   --  192.168.9.2          0.0.0.0/0            udp dpt:24441
ACCEPT     6    --  192.168.9.2          0.0.0.0/0            tcp spt:80
ACCEPT     6    --  192.168.9.2          0.0.0.0/0            tcp spt:443
ACCEPT     6    --  192.168.9.2          0.0.0.0/0            tcp spt:993
ACCEPT     6    --  192.168.9.2          0.0.0.0/0            tcp spt:8105
ACCEPT     6    --  192.168.9.9          0.0.0.0/0            multiport dports 21,80,443 /* FTP and others */
ACCEPT     6    --  192.168.9.9          0.0.0.0/0            tcp spt:22
ACCEPT     0    --  192.168.9.8          0.0.0.0/0           
ACCEPT     0    --  192.168.9.10         0.0.0.0/0           
DROP       0    --  0.0.0.0/0            128.109.12.0/24     
DROP       0    --  0.0.0.0/0            129.194.8.0/24      
DROP       0    --  0.0.0.0/0            166.114.253.0/24    
DROP       0    --  0.0.0.0/0            192.33.215.0/24     
DROP       0    --  0.0.0.0/0            198.166.4.0/24      
DROP       0    --  0.0.0.0/0            202.38.126.0/24     
DROP       0    --  0.0.0.0/0            211.76.164.0/24     
DROP       0    --  0.0.0.0/0            211.239.162.0/24    
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type BROADCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type ANYCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type MULTICAST
LOG        0    --  0.0.0.0/0            0.0.0.0/0            limit: up to 1/sec burst 10 mode srcip LOG flags 0 level 6 prefix "Shorewall loc-net DROP "
DROP       0    --  0.0.0.0/0            0.0.0.0/0           

Chain loc_frwd (1 references)
target     prot opt source               destination         
loc-loc    0    --  0.0.0.0/0            0.0.0.0/0           
loc-net    0    --  0.0.0.0/0            0.0.0.0/0           

Chain logdrop (0 references)
target     prot opt source               destination         
DROP       0    --  0.0.0.0/0            0.0.0.0/0           

Chain logflags (7 references)
target     prot opt source               destination         
LOG        0    --  0.0.0.0/0            0.0.0.0/0            limit: up to 1/sec burst 10 mode srcip LOG flags 4 level 6 prefix "Shorewall logflags DROP "
DROP       0    --  0.0.0.0/0            0.0.0.0/0           

Chain logreject (0 references)
target     prot opt source               destination         
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match src-type BROADCAST
DROP       0    --  224.0.0.0/4          0.0.0.0/0           
DROP       2    --  0.0.0.0/0            0.0.0.0/0           
REJECT     6    --  0.0.0.0/0            0.0.0.0/0            reject-with tcp-reset
REJECT     17   --  0.0.0.0/0            0.0.0.0/0            reject-with icmp-port-unreachable
REJECT     1    --  0.0.0.0/0            0.0.0.0/0            reject-with icmp-host-unreachable
REJECT     0    --  0.0.0.0/0            0.0.0.0/0            reject-with icmp-host-prohibited

Chain net-fw (1 references)
target     prot opt source               destination         
~blacklist0  0    --  0.0.0.0/0            0.0.0.0/0            ctstate INVALID,NEW,UNTRACKED
dynamic    0    --  0.0.0.0/0            0.0.0.0/0            ctstate INVALID,NEW,UNTRACKED
tcpflags   6    --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     0    --  0.0.0.0/0            0.0.0.0/0            ctstate RELATED,ESTABLISHED
ACCEPT     1    --  0.0.0.0/0            0.0.0.0/0            icmptype 8
ACCEPT     17   --  0.0.0.0/0            0.0.0.0/0            multiport dports 12,33434:33500
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type BROADCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type ANYCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type MULTICAST
LOG        0    --  0.0.0.0/0            0.0.0.0/0            limit: up to 1/sec burst 10 mode srcip LOG flags 0 level 6 prefix "Shorewall net-fw DROP "
DROP       0    --  0.0.0.0/0            0.0.0.0/0           

Chain net-loc (1 references)
target     prot opt source               destination         
~blacklist0  0    --  0.0.0.0/0            0.0.0.0/0            ctstate INVALID,NEW,UNTRACKED
dynamic    0    --  0.0.0.0/0            0.0.0.0/0            ctstate INVALID,NEW,UNTRACKED
tcpflags   6    --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     0    --  0.0.0.0/0            0.0.0.0/0            ctstate RELATED,ESTABLISHED
ACCEPT     1    --  0.0.0.0/0            0.0.0.0/0            icmptype 8
ACCEPT     17   --  0.0.0.0/0            0.0.0.0/0            multiport dports 12,33434:33500
ACCEPT     6    --  0.0.0.0/0            192.168.9.2          multiport dports 25,80,443,465,587,993,995
ACCEPT     17   --  0.0.0.0/0            192.168.9.2          udp dpt:6277
ACCEPT     6    --  0.0.0.0/0            192.168.9.2          tcp dpt:8105
~log0      6    --  0.0.0.0/0            192.168.9.9         [goto]  tcp dpt:22 -m geoip --source-country DE 
ACCEPT     6    --  0.0.0.0/0            192.168.9.9          multiport dports 80,443
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type BROADCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type ANYCAST
DROP       0    --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type MULTICAST
LOG        0    --  0.0.0.0/0            0.0.0.0/0            limit: up to 1/sec burst 10 mode srcip LOG flags 0 level 6 prefix "Shorewall net-loc DROP "
DROP       0    --  0.0.0.0/0            0.0.0.0/0           

Chain sha-lh-aaa6bddb30ebca820a70 (0 references)
target     prot opt source               destination         

Chain sha-rh-83b5d0f655436b62a6f9 (0 references)
target     prot opt source               destination         

Chain shorewall (0 references)
target     prot opt source               destination         
           0    --  0.0.0.0/0            0.0.0.0/0            recent: SET name: %CURRENTTIME side: source mask: 255.255.255.255

Chain tcpflags (5 references)
target     prot opt source               destination         
logflags   6    --  0.0.0.0/0            0.0.0.0/0           [goto]  tcp flags:0x3F/0x29
logflags   6    --  0.0.0.0/0            0.0.0.0/0           [goto]  tcp flags:0x3F/0x00
logflags   6    --  0.0.0.0/0            0.0.0.0/0           [goto]  tcp flags:0x06/0x06
logflags   6    --  0.0.0.0/0            0.0.0.0/0           [goto]  tcp flags:0x05/0x05
logflags   6    --  0.0.0.0/0            0.0.0.0/0           [goto]  tcp flags:0x03/0x03
logflags   6    --  0.0.0.0/0            0.0.0.0/0           [goto]  tcp flags:0x19/0x09
logflags   6    --  0.0.0.0/0            0.0.0.0/0           [goto]  tcp spt:0 flags:0x17/0x02

Chain ~blacklist0 (2 references)
target     prot opt source               destination         
DROP       6    --  194.8.74.0/23        0.0.0.0/0            multiport dports 80,443
DROP       6    --  38.108.180.33        0.0.0.0/0            multiport dports 80,443
DROP       6    --  89.223.50.126        0.0.0.0/0            multiport dports 80,443
DROP       6    --  54.235.163.229       0.0.0.0/0            multiport dports 80,443
DROP       6    --  176.213.140.224      0.0.0.0/0            multiport dports 80,443
DROP       6    --  112.209.96.204       0.0.0.0/0            multiport dports 80,443
DROP       6    --  141.98.90.66         0.0.0.0/0            multiport dports 80,443
DROP       6    --  147.78.47.0/24       0.0.0.0/0            multiport dports 80,443
DROP       6    --  194.165.17.17        0.0.0.0/0            multiport dports 80,443
DROP       6    --  45.227.253.70        0.0.0.0/0            multiport dports 80,443
DROP       6    --  91.191.209.194       0.0.0.0/0            multiport dports 80,443
DROP       6    --  81.19.136.20         0.0.0.0/0            multiport dports 80,443
DROP       6    --  181.215.25.69        0.0.0.0/0            multiport dports 80,443
DROP       6    --  149.104.118.56       0.0.0.0/0            multiport dports 80,443
DROP       6    --  103.154.243.117      0.0.0.0/0            multiport dports 80,443
DROP       6    --  223.167.244.231      0.0.0.0/0            multiport dports 80,443
DROP       6    --  113.240.0.0/12       0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  50.74.137.190        0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  67.228.60.50         0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  66.193.83.23         0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  222.52.118.0/24      0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  94.242.198.88        0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  70.88.97.121         0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  66.242.168.21        0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  194.8.64.129         0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  80.203.187.246       0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  77.23.172.10         0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  89.248.171.35        0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  94.102.63.10         0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  82.221.106.233       0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  173.12.148.97        0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  185.56.80.133        0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  176.35.79.127        0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  94.102.56.181        0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  185.211.245.197      0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  185.211.245.198      0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  45.125.66.0/24       0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  185.50.0.0/16        0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  185.140.0.0/16       0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  185.234.0.0/16       0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  37.59.160.147        0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  45.125.65.0/24       0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  45.142.120.0/24      0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  191.96.249.0/24      0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  78.128.113.0/24      0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  212.70.149.0/24      0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  87.246.7.0/24        0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  212.192.240.0/24     0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  212.192.241.0/24     0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  212.192.242.0/24     0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  212.192.243.0/24     0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  212.192.244.0/24     0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  212.192.245.0/24     0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  212.192.246.0/24     0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  212.192.247.0/24     0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  46.148.40.0/24       0.0.0.0/0            multiport dports 25,465,587
DROP       6    --  199.180.131.183      0.0.0.0/0            tcp dpt:22
DROP       6    --  192.126.112.0/20     0.0.0.0/0            tcp dpt:22
DROP       6    --  103.41.124.0/24      0.0.0.0/0            tcp dpt:22
DROP       6    --  62.210.0.0/16        0.0.0.0/0            tcp dpt:22
DROP       6    --  109.63.0.0/16        0.0.0.0/0            tcp dpt:22
DROP       6    --  109.161.0.0/16       0.0.0.0/0            tcp dpt:22
DROP       6    --  146.255.64.92        0.0.0.0/0            tcp dpt:22
DROP       6    --  103.7.229.9          0.0.0.0/0            tcp dpt:22
DROP       6    --  209.146.161.2        0.0.0.0/0            tcp dpt:22
DROP       6    --  91.197.232.0/24      0.0.0.0/0            tcp dpt:22
DROP       6    --  51.15.0.0/16         0.0.0.0/0            tcp dpt:22
DROP       6    --  116.31.116.0/24      0.0.0.0/0            tcp dpt:22
DROP       6    --  121.18.238.0/24      0.0.0.0/0            tcp dpt:22
DROP       6    --  139.162.0.0/16       0.0.0.0/0            tcp dpt:22
DROP       6    --  153.99.182.0/24      0.0.0.0/0            tcp dpt:22
DROP       6    --  185.110.132.0/24     0.0.0.0/0            tcp dpt:22
DROP       6    --  185.56.82.0/24       0.0.0.0/0            tcp dpt:22
DROP       6    --  193.201.0.0/16       0.0.0.0/0            tcp dpt:22
DROP       6    --  221.194.0.0/16       0.0.0.0/0            tcp dpt:22
DROP       6    --  88.214.26.49         0.0.0.0/0            tcp dpt:22
DROP       6    --  167.71.57.61         0.0.0.0/0            tcp dpt:22
DROP       6    --  185.200.118.0/24     0.0.0.0/0            tcp dpt:22
DROP       6    --  157.230.0.0/16       0.0.0.0/0            tcp dpt:22
DROP       6    --  185.220.0.0/16       0.0.0.0/0            tcp dpt:22
DROP       6    --  46.101.120.0/23      0.0.0.0/0            tcp dpt:22
DROP       6    --  161.35.0.0/16        0.0.0.0/0            tcp dpt:22
DROP       6    --  134.122.0.0/17       0.0.0.0/0            tcp dpt:22
DROP       6    --  185.126.34.0/24      0.0.0.0/0            tcp dpt:22
DROP       6    --  104.248.20.236       0.0.0.0/0            tcp dpt:22
DROP       6    --  142.93.105.220       0.0.0.0/0            tcp dpt:22
DROP       6    --  212.192.246.0/24     0.0.0.0/0            tcp dpt:22
DROP       6    --  164.90.187.0/24      0.0.0.0/0            tcp dpt:22
DROP       6    --  164.90.181.0/24      0.0.0.0/0            tcp dpt:22
DROP       6    --  35.208.0.0/12        0.0.0.0/0            multiport dports 993,995
DROP       6    --  35.240.0.0/13        0.0.0.0/0            multiport dports 993,995
DROP       6    --  35.224.0.0/12        0.0.0.0/0            multiport dports 993,995
DROP       6    --  35.192.0.0/12        0.0.0.0/0            multiport dports 993,995
DROP       6    --  34.64.0.0/10         0.0.0.0/0            multiport dports 993,995
DROP       6    --  185.70.184.0/24      0.0.0.0/0            multiport dports 993,995
DROP       6    --  185.70.185.0/24      0.0.0.0/0            multiport dports 993,995
DROP       6    --  185.70.186.0/24      0.0.0.0/0            multiport dports 993,995
DROP       6    --  185.70.187.0/24      0.0.0.0/0            multiport dports 993,995

Chain ~log0 (1 references)
target     prot opt source               destination         
LOG        0    --  0.0.0.0/0            0.0.0.0/0            limit: up to 1/sec burst 10 mode srcip LOG flags 0 level 6 prefix "Shorewall net-loc ACCEPT "
ACCEPT     0    --  0.0.0.0/0            0.0.0.0/0           



 






nat




Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination         
enp2s0f1_in  0    --  0.0.0.0/0            0.0.0.0/0           

Chain INPUT (policy ACCEPT)
target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         

Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination         
enp2s0f1_out  0    --  0.0.0.0/0            0.0.0.0/0           

Chain enp2s0f1_in (1 references)
target     prot opt source               destination         
DNAT       0    --  0.0.0.0/0            194.8.222.59         to:192.168.9.9
DNAT       0    --  0.0.0.0/0            194.8.222.60         to:192.168.9.10
DNAT       0    --  0.0.0.0/0            194.8.222.62         to:192.168.9.2
DNAT       0    --  0.0.0.0/0            194.8.222.58         to:192.168.9.8

Chain enp2s0f1_out (1 references)
target     prot opt source               destination         
SNAT       0    --  192.168.9.9          0.0.0.0/0            to:194.8.222.59
SNAT       0    --  192.168.9.10         0.0.0.0/0            to:194.8.222.60
SNAT       0    --  192.168.9.2          0.0.0.0/0            to:194.8.222.62
SNAT       0    --  192.168.9.8          0.0.0.0/0            to:194.8.222.58



 






mangle




Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination         
rplog      0    --  0.0.0.0/0            0.0.0.0/0            rpfilter validmark invert ctstate INVALID,NEW,RELATED

Chain INPUT (policy ACCEPT)
target     prot opt source               destination         

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         
MARK       0    --  0.0.0.0/0            0.0.0.0/0            MARK and 0xffffff00

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         

Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination         

Chain rplog (1 references)
target     prot opt source               destination         
LOG        0    --  0.0.0.0/0            0.0.0.0/0            limit: up to 1/sec burst 10 mode srcip LOG flags 0 level 6 prefix "Shorewall rplog DROP "
DROP       0    --  0.0.0.0/0            0.0.0.0/0           



 













Status unchanged in 77 days, 0 hours, 50 minutes

Status message received from 192.168.9.1

Client data available







    

      

        powered by XyMon 4.3.30