Example_iptables_configuration
Boris Klymko edited this page Apr 8, 2012
·
3 revisions
Ce script génère une configuration iptables de ce type :
# iptables -L -v
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
118K 71M TCP_INPUT tcp -- any any anywhere anywhere
2031 329K UDP_INPUT udp -- any any anywhere anywhere
0 0 ICMP_INPUT icmp -- any any anywhere anywhere
Chain OUTPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
111K 189M TCP_OUTPUT tcp -- any any anywhere anywhere
571 41195 UDP_OUTPUT udp -- any any anywhere anywhere
6 528 ICMP_OUTPUT icmp -- any any anywhere anywhere
Chain TCP_INPUT (1 references)
pkts bytes target prot opt in out source destination
118K 71M TCP_INPUT_ALLOWED all -- any any anywhere anywhere
0 0 TCP_NON_CONFORME_1 tcp -- any any anywhere anywhere tcp flags:!FIN,SYN,RST,ACK/SYN state NEW
0 0 TCP_NON_CONFORME_2 tcp -- any any anywhere anywhere tcp option=64
0 0 TCP_NON_CONFORME_3 tcp -- any any anywhere anywhere tcp option=128
0 0 TCP_SCAN_01 tcp -- any any anywhere anywhere tcp flags:FIN,SYN,RST,PSH,ACK,URG/NONE
0 0 TCP_SCAN_02 tcp -- any any anywhere anywhere tcp flags:FIN,SYN,RST,PSH,ACK,URG/FIN,SYN,RST,PSH,ACK,URG
0 0 TCP_SCAN_03 tcp -- any any anywhere anywhere tcp flags:SYN,RST/SYN,RST
0 0 TCP_SCAN_04 tcp -- any any anywhere anywhere tcp flags:FIN,SYN/FIN,SYN
434 26064 TCP_SCAN_05 tcp -- any any anywhere anywhere tcp flags:SYN,ACK/SYN,ACK
0 0 TCP_SCAN_06 tcp -- any any anywhere anywhere tcp flags:FIN,RST/FIN,RST
0 0 TCP_SCAN_07 tcp -- any any anywhere anywhere tcp flags:FIN,ACK/FIN
0 0 TCP_SCAN_08 tcp -- any any anywhere anywhere tcp flags:ACK,URG/URG
0 0 TCP_SCAN_09 tcp -- any any anywhere anywhere tcp flags:FIN,PSH,URG/FIN,PSH,URG
0 0 TCP_SCAN_10 tcp -- any any anywhere anywhere tcp flags:FIN,SYN,RST,PSH,ACK,URG/FIN,PSH,URG
0 0 TCP_SCAN_12 tcp -- any any anywhere anywhere tcp flags:FIN,SYN,RST,PSH,ACK,URG/NONE
0 0 TCP_SCAN_13 tcp -- any any anywhere anywhere tcp flags:FIN,SYN,RST,PSH,ACK,URG/FIN,SYN,RST,ACK,URG
0 0 TCP_SCAN_14 tcp -- any any anywhere anywhere tcp flags:FIN,SYN,RST,PSH,ACK,URG/FIN
118K 71M GLOBAL_INPUT all -- any any anywhere anywhere state RELATED,ESTABLISHED
54 3240 GLOBAL_INPUT tcp -- any any anywhere anywhere limit: avg 1/sec burst 3 tcp flags:FIN,SYN,RST,ACK/SYN
0 0 TCP_INPUT_FLOOD all -- any any anywhere anywhere
Chain TCP_INPUT_ALLOWED (1 references)
pkts bytes target prot opt in out source destination
463 37957 RETURN tcp -- any any trust1 anywhere tcp dpt:ssh
39017 2205K RETURN tcp -- any any trust2 anywhere tcp dpt:ssh
8287 470K RETURN tcp -- any any trust2 anywhere tcp dpt:3142
7218 414K RETURN tcp -- any any trust3 anywhere tcp dpt:3142
14490 815K RETURN tcp -- any any trust3 anywhere tcp dpt:3142
0 0 RETURN tcp -- any any trust4 anywhere tcp dpt:3142
0 0 RETURN tcp -- any any trust5 anywhere tcp dpt:3142
568 106K RETURN tcp -- any any trust2 anywhere tcp spt:ssh
379 92414 RETURN tcp -- any any trust3 anywhere tcp spt:ssh
657 127K RETURN tcp -- any any trust3 anywhere tcp spt:ssh
0 0 RETURN tcp -- any any trust4 anywhere tcp spt:ssh
0 0 RETURN tcp -- any any trust5 anywhere tcp spt:ssh
46771 67M RETURN tcp -- any any anywhere anywhere state RELATED,ESTABLISHED tcp dpts:1024:65535
0 0 TCP_IN_REFUSED all -- any any anywhere anywhere
Chain UDP_INPUT (1 references)
pkts bytes target prot opt in out source destination
2031 329K UDP_INPUT_ALLOWED all -- any any anywhere anywhere
559 65990 GLOBAL_INPUT all -- any any anywhere anywhere limit: avg 10/sec burst 5
19 2013 UDP_INPUT_FLOOD all -- any any anywhere anywhere
Chain UDP_INPUT_ALLOWED (1 references)
pkts bytes target prot opt in out source destination
73 5548 RETURN udp -- any any anywhere anywhere udp spt:ntp dpt:ntp
439 33821 RETURN udp -- any any 192.168.1.254 anywhere udp spt:domain
39 13082 RETURN udp -- any any default 255.255.255.255 udp spt:bootpc dpt:bootps
42 13776 DROP udp -- any any 192.168.1.0/24 255.255.255.255 udp spt:bootpc dpt:bootps
551 44490 DROP udp -- any any 192.168.1.0/24 192.168.1.255 udp spt:netbios-ns dpt:netbios-ns
860 203K DROP udp -- any any 192.168.1.0/24 192.168.1.255 udp spt:netbios-dgm dpt:netbios-dgm
27 15552 RETURN udp -- any any anywhere anywhere udp spt:bootps dpt:bootpc
0 0 UDP_IN_REFUSED all -- any any anywhere anywhere
Chain ICMP_INPUT (1 references)
pkts bytes target prot opt in out source destination
0 0 ICMP_INPUT_ALLOWED all -- any any anywhere anywhere
0 0 ICMP_REQUEST_1 icmp -- any any anywhere anywhere icmp echo-request
0 0 GLOBAL_INPUT all -- any any anywhere anywhere limit: avg 1/sec burst 2
0 0 ICMP_INPUT_FLOOD all -- any any anywhere anywhere
Chain ICMP_INPUT_ALLOWED (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN icmp -- any any anywhere anywhere icmp destination-unreachable
0 0 RETURN icmp -- any any anywhere anywhere icmp source-quench
0 0 RETURN all -- any any anywhere anywhere
0 0 ICMP_IN_REFUSED all -- any any anywhere anywhere
Chain GLOBAL_INPUT (4 references)
pkts bytes target prot opt in out source destination
0 0 MALFORMED_INPUT all -- any any anywhere anywhere state INVALID
0 0 FRAGMENT_INPUT all -f any any anywhere anywhere
39 13082 INPUT_SPOOF_01 all -- any any default/8 anywhere
0 0 INPUT_SPOOF_02 all -- any any 10.0.0.0/8 anywhere
0 0 INPUT_SPOOF_03 all -- any any 172.16.0.0/12 anywhere
0 0 INPUT_SPOOF_05 all -- any any link-local/16 anywhere
0 0 INPUT_SPOOF_06 all -- any any 240.0.0.0/4 anywhere
0 0 INPUT_SPOOF_07 all -- any any base-address.mcast.net/3 anywhere
0 0 INPUT_SPOOF_10 all -- eth0 any loopback/8 anywhere
0 0 INPUT_SPOOF_11 all -- eth0 any anywhere loopback/8
0 0 OUTPUT_SPOOF_10 all -- any eth0 loopback/8 anywhere
0 0 OUTPUT_SPOOF_11 all -- any eth0 anywhere loopback/8
0 0 INPUT_SPOOF_12 all -- lo any !loopback/8 anywhere
0 0 INPUT_SPOOF_13 all -- lo any anywhere !loopback/8
0 0 OUTPUT_SPOOF_12 all -- any lo !loopback/8 anywhere
0 0 OUTPUT_SPOOF_13 all -- any lo anywhere !loopback/8
118K 72M ACCEPT all -- any any anywhere anywhere
Chain TCP_OUTPUT (1 references)
pkts bytes target prot opt in out source destination
111K 189M TCP_OUTPUT_ALLOWED all -- any any anywhere anywhere
111K 189M GLOBAL_OUTPUT all -- any any anywhere anywhere
Chain TCP_OUTPUT_ALLOWED (1 references)
pkts bytes target prot opt in out source destination
318 86337 RETURN tcp -- any any anywhere trust1 tcp spt:ssh
37520 49M RETURN tcp -- any any anywhere trust2 tcp spt:ssh
10046 39M RETURN tcp -- any any anywhere trust2 tcp spt:3142
8701 40M RETURN tcp -- any any anywhere trust3 tcp spt:3142
25427 58M RETURN tcp -- any any anywhere trust3 tcp spt:3142
0 0 RETURN tcp -- any any anywhere trust4 tcp spt:3142
0 0 RETURN tcp -- any any anywhere trust5 tcp spt:3142
814 65763 RETURN tcp -- any any anywhere trust2 tcp dpt:ssh
475 33482 RETURN tcp -- any any anywhere trust3 tcp dpt:ssh
1008 77067 RETURN tcp -- any any anywhere trust3 tcp dpt:ssh
0 0 RETURN tcp -- any any anywhere trust4 tcp dpt:ssh
6 360 RETURN tcp -- any any anywhere trust5 tcp dpt:ssh
0 0 RETURN tcp -- any any anywhere anywhere tcp dpt:whois
26832 1811K RETURN tcp -- any any anywhere anywhere tcp dpt:www
9 540 TCP_OUT_REFUSED all -- any any anywhere anywhere
Chain UDP_OUTPUT (1 references)
pkts bytes target prot opt in out source destination
571 41195 UDP_OUTPUT_ALLOWED all -- any any anywhere anywhere
535 38557 GLOBAL_OUTPUT all -- any any anywhere anywhere
Chain UDP_OUTPUT_ALLOWED (1 references)
pkts bytes target prot opt in out source destination
84 6384 RETURN udp -- any any anywhere anywhere udp spt:ntp dpt:ntp
464 28797 RETURN udp -- any any anywhere 192.168.1.254 udp dpt:domain
17 5576 RETURN udp -- any any anywhere anywhere udp spt:bootpc dpt:bootps
0 0 UDP_OUT_REFUSED all -- any any anywhere anywhere
Chain ICMP_OUTPUT (1 references)
pkts bytes target prot opt in out source destination
6 528 ICMP_OUTPUT_ALLOWED all -- any any anywhere anywhere
0 0 ICMP_REPLY_1 icmp -- any any anywhere anywhere icmp echo-reply
6 528 ICMP_OUT_2 icmp -- any any anywhere anywhere icmp destination-unreachable
0 0 ICMP_OUT_3 icmp -- any any anywhere anywhere icmp time-exceeded
0 0 GLOBAL_OUTPUT all -- any any anywhere anywhere
Chain ICMP_OUTPUT_ALLOWED (1 references)
pkts bytes target prot opt in out source destination
6 528 RETURN icmp -- any any anywhere anywhere state NEW,RELATED,ESTABLISHED
0 0 ICMP_OUT_REFUSED all -- any any anywhere anywhere
Chain GLOBAL_OUTPUT (3 references)
pkts bytes target prot opt in out source destination
125 6500 MALFORMED_OUTPUT all -- any any anywhere anywhere state INVALID
0 0 FRAGMENT_OUTPUT all -f any any anywhere anywhere
0 0 OUTPUT_SPOOF_01 all -- any any anywhere default/8
0 0 OUTPUT_SPOOF_02 all -- any any anywhere 10.0.0.0/8
0 0 OUTPUT_SPOOF_03 all -- any any anywhere 172.16.0.0/12
0 0 OUTPUT_SPOOF_05 all -- any any anywhere link-local/16
0 0 OUTPUT_SPOOF_06 all -- any any anywhere 240.0.0.0/4
0 0 OUTPUT_SPOOF_07 all -- any any anywhere base-address.mcast.net/3
112K 189M ACCEPT all -- any any anywhere anywhere
Chain FRAGMENT_INPUT (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT FRAGMENT_INPUT] '
0 0 DROP all -- any any anywhere anywhere
Chain FRAGMENT_OUTPUT (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT FRAGMENT_OUTPUT] '
0 0 DROP all -- any any anywhere anywhere
Chain ICMP_INPUT_FLOOD (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT ICMP_INPUT_FLOOD] '
0 0 DROP all -- any any anywhere anywhere
Chain ICMP_IN_REFUSED (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT ICMP_IN_REFUSED] '
0 0 DROP all -- any any anywhere anywhere
Chain ICMP_OUT_2 (1 references)
pkts bytes target prot opt in out source destination
6 528 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT ICMP_OUT_2] '
6 528 DROP all -- any any anywhere anywhere
Chain ICMP_OUT_3 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT ICMP_OUT_3] '
0 0 DROP all -- any any anywhere anywhere
Chain ICMP_OUT_REFUSED (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT ICMP_OUT_REFUSED] '
0 0 DROP all -- any any anywhere anywhere
Chain ICMP_REPLY_1 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT ICMP_REPLY_1] '
0 0 DROP all -- any any anywhere anywhere
Chain ICMP_REQUEST_1 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT ICMP_REQUEST_1] '
0 0 DROP all -- any any anywhere anywhere
Chain INPUT_SPOOF_01 (1 references)
pkts bytes target prot opt in out source destination
39 13082 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT INPUT_SPOOF_01] '
39 13082 DROP all -- any any anywhere anywhere
Chain INPUT_SPOOF_02 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT INPUT_SPOOF_02] '
0 0 DROP all -- any any anywhere anywhere
Chain INPUT_SPOOF_03 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT INPUT_SPOOF_03] '
0 0 DROP all -- any any anywhere anywhere
Chain INPUT_SPOOF_05 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT INPUT_SPOOF_05] '
0 0 DROP all -- any any anywhere anywhere
Chain INPUT_SPOOF_06 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT INPUT_SPOOF_06] '
0 0 DROP all -- any any anywhere anywhere
Chain INPUT_SPOOF_07 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT INPUT_SPOOF_07] '
0 0 DROP all -- any any anywhere anywhere
Chain INPUT_SPOOF_10 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT INPUT_SPOOF_10] '
0 0 DROP all -- any any anywhere anywhere
Chain INPUT_SPOOF_11 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT INPUT_SPOOF_11] '
0 0 DROP all -- any any anywhere anywhere
Chain INPUT_SPOOF_12 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT INPUT_SPOOF_12] '
0 0 DROP all -- any any anywhere anywhere
Chain INPUT_SPOOF_13 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT INPUT_SPOOF_13] '
0 0 DROP all -- any any anywhere anywhere
Chain MALFORMED_INPUT (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT MALFORMED_INPUT] '
0 0 DROP all -- any any anywhere anywhere
Chain MALFORMED_OUTPUT (1 references)
pkts bytes target prot opt in out source destination
125 6500 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT MALFORMED_OUTPUT] '
125 6500 DROP all -- any any anywhere anywhere
Chain OUTPUT_SPOOF_01 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT OUTPUT_SPOOF_01] '
0 0 DROP all -- any any anywhere anywhere
Chain OUTPUT_SPOOF_02 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT OUTPUT_SPOOF_02] '
0 0 DROP all -- any any anywhere anywhere
Chain OUTPUT_SPOOF_03 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT OUTPUT_SPOOF_03] '
0 0 DROP all -- any any anywhere anywhere
Chain OUTPUT_SPOOF_05 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT OUTPUT_SPOOF_05] '
0 0 DROP all -- any any anywhere anywhere
Chain OUTPUT_SPOOF_06 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT OUTPUT_SPOOF_06] '
0 0 DROP all -- any any anywhere anywhere
Chain OUTPUT_SPOOF_07 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT OUTPUT_SPOOF_07] '
0 0 DROP all -- any any anywhere anywhere
Chain OUTPUT_SPOOF_10 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT OUTPUT_SPOOF_10] '
0 0 DROP all -- any any anywhere anywhere
Chain OUTPUT_SPOOF_11 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT OUTPUT_SPOOF_11] '
0 0 DROP all -- any any anywhere anywhere
Chain OUTPUT_SPOOF_12 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT OUTPUT_SPOOF_12] '
0 0 DROP all -- any any anywhere anywhere
Chain OUTPUT_SPOOF_13 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT OUTPUT_SPOOF_13] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_INPUT_FLOOD (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_INPUT_FLOOD] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_IN_REFUSED (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_IN_REFUSED] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_NON_CONFORME_1 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_NON_CONFORME_1] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_NON_CONFORME_2 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_NON_CONFORME_2] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_NON_CONFORME_3 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_NON_CONFORME_3] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_OUT_REFUSED (1 references)
pkts bytes target prot opt in out source destination
9 540 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_OUT_REFUSED] '
9 540 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_01 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_01] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_02 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_02] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_03 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_03] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_04 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_04] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_05 (1 references)
pkts bytes target prot opt in out source destination
434 26064 RETURN tcp -- any any anywhere anywhere state RELATED,ESTABLISHED
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_05] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_06 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_06] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_07 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_07] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_08 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_08] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_09 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_09] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_10 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_10] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_12 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_12] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_13 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_13] '
0 0 DROP all -- any any anywhere anywhere
Chain TCP_SCAN_14 (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT TCP_SCAN_14] '
0 0 DROP all -- any any anywhere anywhere
Chain UDP_INPUT_FLOOD (1 references)
pkts bytes target prot opt in out source destination
19 2013 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT UDP_INPUT_FLOOD] '
19 2013 DROP all -- any any anywhere anywhere
Chain UDP_IN_REFUSED (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT UDP_IN_REFUSED] '
0 0 DROP all -- any any anywhere anywhere
Chain UDP_OUT_REFUSED (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- any any anywhere anywhere LOG level alert prefix `[IPT UDP_OUT_REFUSED] '
0 0 DROP all -- any any anywhere anywhere