记录iptables
来源:互联网 发布:智业软件上市 编辑:程序博客网 时间:2024/05/16 14:38
# sample configuration for iptables service
# you can edit this manually or use system-config-firewall
# please do not ask us to add additional ports/services to this default configuration
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 60158 -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -s 10.10.0.0/16 -j ACCEPT
-A INPUT -s 10.20.0.0/16 -j ACCEPT
-A INPUT -s 10.30.0.0/16 -j ACCEPT
-A INPUT -s 10.40.0.0/16 -j ACCEPT
-A INPUT -s 10.50.0.0/16 -j ACCEPT
-A INPUT -s 10.60.0.0/16 -j ACCEPT
-A INPUT -s 10.100.0.0/16 -j ACCEPT
-A INPUT -s 103.235.226.0/25 -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 10002 -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 143 -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 993 -j ACCEPT
-A INPUT -m set --match-set banthis src -j DROP
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A INPUT -m set --match-set banthis src -j DROP
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
COMMIT
# you can edit this manually or use system-config-firewall
# please do not ask us to add additional ports/services to this default configuration
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 60158 -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -s 10.10.0.0/16 -j ACCEPT
-A INPUT -s 10.20.0.0/16 -j ACCEPT
-A INPUT -s 10.30.0.0/16 -j ACCEPT
-A INPUT -s 10.40.0.0/16 -j ACCEPT
-A INPUT -s 10.50.0.0/16 -j ACCEPT
-A INPUT -s 10.60.0.0/16 -j ACCEPT
-A INPUT -s 10.100.0.0/16 -j ACCEPT
-A INPUT -s 103.235.226.0/25 -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 10002 -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 143 -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 993 -j ACCEPT
-A INPUT -m set --match-set banthis src -j DROP
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A INPUT -m set --match-set banthis src -j DROP
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
COMMIT
0 0
- iptables记录
- Iptables 记录
- 记录iptables
- iptables实战记录
- iptables阅读文档记录
- iptables学习记录
- iptables snat 记录
- pptp iptables snat记录
- iptables 规则记录
- iptables日志记录访问记录
- Ubuntu下iptables使用记录
- centos下Iptables学习记录
- 记录几个有关LINUX IPTABLES的文章
- 使用iptables记录谁访问了HDFS
- IPTABLES
- Iptables
- iptables
- iptables
- AsyncTask和Handler和runOnUiThread()
- Java新手如何学习Spring、Struts、Hibernate三大框架?
- android的图片的如何进行比较
- 用 DATE_FORMAT 来格式化日期字段
- Wpf 弹出窗口
- 记录iptables
- 3-32 推箱子(数组元素移动)
- Ubuntu Server 14.04.1 LTS安装JDK
- Spark join和cogroup算子
- 和lock一起学beego 博客系统开发为例(三)
- Android Studio编译程序出现finished with non-zero exit value 2错误
- add & foreach (remove)
- Linux进程地址管理之mm_struct
- svchost.exe占用cpu过高的问题(适合和我一样的电脑小白)