Freesco, NND, CDN, EOS :: Wyświetl temat

: [/] [] ()

# Generated by iptables-save v1.3.4 on Tue Jan  9 16:02:40 2007
*mangle
:PREROUTING ACCEPT [6675384:4898144565]
:INPUT ACCEPT [114012:12840585]
:FORWARD ACCEPT [6568274:4886489354]
:OUTPUT ACCEPT [97499:11524962]
:POSTROUTING ACCEPT [6663811:4897871467]
:niceshaper_dl - [0:0]
:niceshaper_ul - [0:0]
-A PREROUTING -p tcp -j CONNMARK --restore-mark 
-A PREROUTING -p tcp -m mark ! --mark 0x0 -j ACCEPT 
-A PREROUTING -m ipp2p --ipp2p -j MARK --set-mark 0x999 
-A PREROUTING -p tcp -m mark --mark 0x999 -j CONNMARK --save-mark 
-A PREROUTING -p tcp -j CONNMARK --restore-mark 
-A PREROUTING -p tcp -m mark ! --mark 0x0 -j ACCEPT 
-A PREROUTING -m ipp2p --ipp2p -j MARK --set-mark 0x999 
-A PREROUTING -p tcp -m mark --mark 0x999 -j CONNMARK --save-mark 
-A PREROUTING -p tcp -j CONNMARK --restore-mark 
-A PREROUTING -p tcp -m mark ! --mark 0x0 -j ACCEPT 
-A PREROUTING -m ipp2p --ipp2p -j MARK --set-mark 0x999 
-A PREROUTING -p tcp -m mark --mark 0x999 -j CONNMARK --save-mark 
-A PREROUTING -p tcp -j CONNMARK --restore-mark 
-A PREROUTING -p tcp -m mark ! --mark 0x0 -j ACCEPT 
-A PREROUTING -m ipp2p --ipp2p -j MARK --set-mark 0x999 
-A PREROUTING -p tcp -m mark --mark 0x999 -j CONNMARK --save-mark 
-A PREROUTING -p tcp -j CONNMARK --restore-mark 
-A PREROUTING -p tcp -m mark ! --mark 0x0 -j ACCEPT 
-A PREROUTING -m ipp2p --ipp2p -j MARK --set-mark 0x999 
-A PREROUTING -p tcp -m mark --mark 0x999 -j CONNMARK --save-mark 
-A PREROUTING -p tcp -j CONNMARK --restore-mark 
-A PREROUTING -p tcp -m mark ! --mark 0x0 -j ACCEPT 
-A PREROUTING -m ipp2p --ipp2p -j MARK --set-mark 0x999 
-A PREROUTING -p tcp -m mark --mark 0x999 -j CONNMARK --save-mark 
-A PREROUTING -s 192.168.16.0/255.255.255.0 -i eth1 -j niceshaper_ul 
-A INPUT -d 83.19.245.172 -i eth0 -j niceshaper_dl 
-A OUTPUT -s 83.19.245.172 -o eth0 -j niceshaper_ul 
-A POSTROUTING -d 192.168.16.0/255.255.255.0 -o eth1 -j niceshaper_dl 
-A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2
-A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3
-A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2
-A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3
-A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2
-A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3
-A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2
-A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3
-A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2
-A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3
-A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2
-A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3
-A niceshaper_dl -s 192.168.16.1 -d 192.168.16.0/255.255.255.0 -o eth1 -j RETURN 
-A niceshaper_dl -s 83.19.245.172 -d 192.168.16.0/255.255.255.0 -o eth1 -j RETURN 
-A niceshaper_dl 
-A niceshaper_dl -d 83.19.245.172 -i eth0 -j RETURN 
-A niceshaper_dl -d 192.168.16.3 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.4 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.5 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.6 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.7 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.8 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.9 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.10 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.11 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.12 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.13 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.14 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.15 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.16 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.17 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.18 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.19 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.20 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.21 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.22 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.25 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.24 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.23 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.26 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.27 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.28 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.29 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.30 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.31 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.32 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.33 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.34 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.37 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.39 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.40 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.44 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.50 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.51 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.66 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.134 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.135 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.150 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.199 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.202 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.203 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.204 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.209 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.251 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.251 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.252 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.253 -o eth1 -j IMQ --todev 1
-A niceshaper_dl -d 192.168.16.254 -o eth1 -j IMQ --todev 1
-A niceshaper_ul -s 192.168.16.0/255.255.255.0 -d 192.168.16.1 -i eth1 -j RETURN 
-A niceshaper_ul -s 192.168.16.0/255.255.255.0 -d 83.19.245.172 -i eth1 -j RETURN 
-A niceshaper_ul 
-A niceshaper_ul -s 83.19.245.172 -o eth0 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.3 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.4 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.5 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.6 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.7 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.8 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.9 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.10 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.11 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.12 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.13 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.14 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.15 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.16 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.17 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.18 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.19 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.20 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.21 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.22 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.25 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.24 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.23 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.26 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.27 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.28 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.29 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.30 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.31 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.32 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.33 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.34 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.37 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.39 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.40 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.44 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.50 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.51 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.66 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.134 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.135 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.150 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.199 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.202 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.203 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.204 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.209 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.251 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.251 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.252 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.253 -i eth1 -j IMQ --todev 0
-A niceshaper_ul -s 192.168.16.254 -i eth1 -j IMQ --todev 0
COMMIT
# Completed on Tue Jan  9 16:02:40 2007
# Generated by iptables-save v1.3.4 on Tue Jan  9 16:02:40 2007
*filter
:INPUT DROP [7515:654958]
:FORWARD DROP [1914:140053]
:OUTPUT ACCEPT [97499:11524962]
:liczenie - [0:0]
:mrtg_traffic - [0:0]
-A INPUT -i lo -j ACCEPT 
-A INPUT -p tcp -m multiport --dports 135,445 -j DROP 
-A INPUT -p tcp -m tcp --dport 113 -j REJECT --reject-with icmp-port-unreachable 
-A INPUT -p tcp -m tcp --dport 1080 -j REJECT --reject-with icmp-port-unreachable 
-A INPUT -i eth0 -p tcp -m tcp --dport 80 -j ACCEPT  
-A INPUT -p icmp -m icmp --icmp-type 8 -m limit --limit 1/sec -j ACCEPT 
-A INPUT -i ! eth0 -j ACCEPT 
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 1550 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 1331 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 2499 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 2502 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 2500 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 2572 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 10111 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 1000 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 10110 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 6650 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 6666 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 6543 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 5656 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 5905 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 5678 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 5000 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 6677 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 6667 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 5671 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 6543 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 22 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 8282 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 8026 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --dport 8888 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 5432 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 5511 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 5566 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 5555 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 34001 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 34002 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 34003 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 34004 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 34000 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 33000 -j ACCEPT 
-A INPUT -i eth0 -p udp -m udp --dport 5567 -j ACCEPT 
-A INPUT -i eth0 -p tcp -m tcp --dport 8030 -j ACCEPT 
-A INPUT -i eth0 -p tcp -m tcp --dport 1550 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --dport 23 -j ACCEPT 
-A FORWARD -j liczenie 
-A FORWARD -d 217.17.41.0/255.255.255.0 -o eth0 -p tcp -m tcp --dport 443 -j REJECT --reject-with icmp-port-unreachable 
-A FORWARD -j mrtg_traffic 
-A FORWARD -s 192.168.16.0/255.255.255.0 -p tcp -m tcp --tcp-flags SYN,RST,ACK SYN -m connlimit --connlimit-above 200 --connlimit-mask 32 -j DROP 
-A FORWARD -d 192.168.16.22 -p tcp --syn -m connlimit --connlimit-above 10 --connlimit-mask 0 -j DROP
#-A FORWARD -s 192.168.16.0/24 -p tcp --tcp-flags SYN,RST,ACK SYN -m connlimit --connlimit-above 100 --connlimit-mask 32 -j DROP
################
#-I FORWARD -d 192.168.16.22 -p udp -j DROP
#-I FORWARD -d 192.168.16.22 -p udp -m limit --limit 1/s -j ACCEPT
#-I FORWARD -s 192.168.16.22 -p udp -j DROP
#-I FORWARD -s 192.168.16.22 -p udp -m limit --limit 1/s -j ACCEPT
##############
-I FORWARD -d 192.168.16.3 -p udp -j DROP
-I FORWARD -d 192.168.16.3 -p udp -m limit --limit 1/s -j ACCEPT
-I FORWARD -s 192.168.16.3 -p udp -j DROP
-I FORWARD -s 192.168.16.3 -p udp -m limit --limit 1/s -j ACCEPT
##############
-A FORWARD -d 217.17.41.0/255.255.255.0 -o eth0 -p tcp -m tcp --dport 443 -j REJECT --reject-with icmp-port-unreachable 
-A FORWARD -d 192.168.16.40 -p udp -m udp --dport 34000 -j ACCEPT 
-A FORWARD -d 192.168.16.209 -p udp -m udp --dport 33000 -j ACCEPT 
-A FORWARD -d 217.17.41.0/255.255.255.0 -o eth0 -p tcp -m tcp --dport 443 -j REJECT --reject-with icmp-port-unreachable 
-A FORWARD -d 192.168.16.40 -p udp -m udp --dport 5567 -j ACCEPT 
-A FORWARD -d 217.17.41.0/255.255.255.0 -o eth0 -p tcp -m tcp --dport 443 -j REJECT --reject-with icmp-port-unreachable 
-A FORWARD -d 217.17.41.0/255.255.255.0 -o eth0 -p tcp -m tcp --dport 443 -j REJECT --reject-with icmp-port-unreachable 
-A FORWARD -d 192.168.16.2 -p tcp -m tcp --dport 4444 -j ACCEPT 
-A FORWARD -d 192.168.16.40 -p tcp -m tcp --dport 34000 -j ACCEPT 
-A FORWARD -d 192.168.16.60 -p tcp -m tcp --dport 6346 -j ACCEPT 
-A FORWARD -d 192.168.16.60 -p tcp -m tcp --dport 3669 -j ACCEPT 
-A FORWARD -d 192.168.16.60 -p tcp -m tcp --dport 6881 -j ACCEPT 
-A FORWARD -d 192.168.16.60 -p tcp -m tcp --dport 4662 -j ACCEPT 
-A FORWARD -d 192.168.16.60 -p udp -m udp --dport 5737 -j ACCEPT 
-A FORWARD -d 192.168.16.40 -p tcp -m tcp --dport 5567 -j ACCEPT
-A FORWARD -d 192.168.16.150 -p tcp -m tcp --dport 23 -j ACCEPT 
-A FORWARD -d 217.17.41.0/255.255.255.0 -o eth0 -p tcp -m tcp --dport 443 -j REJECT --reject-with icmp-port-unreachable 
-A FORWARD -o lo -j ACCEPT 
-A FORWARD -p tcp -m multiport --dports 135,445 -j DROP 
-A FORWARD -i ! eth0 -j ACCEPT 
-A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A liczenie -d 192.168.16.2 -j RETURN 
-A liczenie -s 192.168.16.2 -j RETURN 
-A liczenie -d 192.168.16.3 -j RETURN 
-A liczenie -s 192.168.16.3 -j RETURN 
-A liczenie -d 192.168.16.4 -j RETURN 
-A liczenie -s 192.168.16.4 -j RETURN 
-A liczenie -d 192.168.16.5 -j RETURN 
-A liczenie -s 192.168.16.5 -j RETURN 
-A liczenie -d 192.168.16.6 -j RETURN 
-A liczenie -s 192.168.16.6 -j RETURN 
-A liczenie -d 192.168.16.7 -j RETURN 
-A liczenie -s 192.168.16.7 -j RETURN 
-A liczenie -d 192.168.16.8 -j RETURN 
-A liczenie -s 192.168.16.8 -j RETURN 
-A liczenie -d 192.168.16.9 -j RETURN 
-A liczenie -s 192.168.16.9 -j RETURN 
-A liczenie -d 192.168.16.10 -j RETURN 
-A liczenie -s 192.168.16.10 -j RETURN 
-A liczenie -d 192.168.16.11 -j RETURN 
-A liczenie -s 192.168.16.11 -j RETURN 
-A liczenie -d 192.168.16.12 -j RETURN 
-A liczenie -s 192.168.16.12 -j RETURN 
-A liczenie -d 192.168.16.13 -j RETURN 
-A liczenie -s 192.168.16.13 -j RETURN 
-A liczenie -d 192.168.16.14 -j RETURN 
-A liczenie -s 192.168.16.14 -j RETURN 
-A liczenie -d 192.168.16.15 -j RETURN 
-A liczenie -s 192.168.16.15 -j RETURN 
-A liczenie -d 192.168.16.16 -j RETURN 
-A liczenie -s 192.168.16.16 -j RETURN 
-A liczenie -d 192.168.16.17 -j RETURN 
-A liczenie -s 192.168.16.17 -j RETURN 
-A liczenie -d 192.168.16.18 -j RETURN 
-A liczenie -s 192.168.16.18 -j RETURN 
-A liczenie -d 192.168.16.19 -j RETURN 
-A liczenie -s 192.168.16.19 -j RETURN 
-A liczenie -d 192.168.16.20 -j RETURN 
-A liczenie -s 192.168.16.20 -j RETURN 
-A liczenie -d 192.168.16.21 -j RETURN 
-A liczenie -s 192.168.16.21 -j RETURN 
-A liczenie -d 192.168.16.22 -j RETURN 
-A liczenie -s 192.168.16.22 -j RETURN 
-A liczenie -d 192.168.16.23 -j RETURN 
-A liczenie -s 192.168.16.23 -j RETURN 
-A liczenie -d 192.168.16.24 -j RETURN 
-A liczenie -s 192.168.16.24 -j RETURN 
-A liczenie -d 192.168.16.25 -j RETURN 
-A liczenie -s 192.168.16.25 -j RETURN 
-A liczenie -d 192.168.16.26 -j RETURN 
-A liczenie -s 192.168.16.26 -j RETURN 
-A liczenie -d 192.168.16.27 -j RETURN 
-A liczenie -s 192.168.16.27 -j RETURN 
-A liczenie -d 192.168.16.28 -j RETURN 
-A liczenie -s 192.168.16.28 -j RETURN 
-A liczenie -d 192.168.16.29 -j RETURN 
-A liczenie -s 192.168.16.29 -j RETURN 
-A liczenie -d 192.168.16.30 -j RETURN 
-A liczenie -s 192.168.16.30 -j RETURN 
-A liczenie -d 192.168.16.31 -j RETURN 
-A liczenie -s 192.168.16.31 -j RETURN 
-A liczenie -d 192.168.16.32 -j RETURN 
-A liczenie -s 192.168.16.32 -j RETURN 
-A liczenie -d 192.168.16.33 -j RETURN 
-A liczenie -s 192.168.16.33 -j RETURN 
-A liczenie -d 192.168.16.34 -j RETURN 
-A liczenie -s 192.168.16.34 -j RETURN 
-A liczenie -d 192.168.16.35 -j RETURN 
-A liczenie -s 192.168.16.35 -j RETURN 
-A liczenie -d 192.168.16.36 -j RETURN 
-A liczenie -s 192.168.16.36 -j RETURN 
-A liczenie -d 192.168.16.37 -j RETURN 
-A liczenie -s 192.168.16.37 -j RETURN 
-A liczenie -d 192.168.16.38 -j RETURN 
-A liczenie -s 192.168.16.38 -j RETURN 
-A liczenie -d 192.168.16.39 -j RETURN 
-A liczenie -s 192.168.16.39 -j RETURN 
-A liczenie -d 192.168.16.40 -j RETURN 
-A liczenie -s 192.168.16.40 -j RETURN 
-A liczenie -d 192.168.16.44 -j RETURN 
-A liczenie -s 192.168.16.44 -j RETURN 
-A liczenie -d 192.168.16.46 -j RETURN 
-A liczenie -s 192.168.16.46 -j RETURN 
-A liczenie -d 192.168.16.47 -j RETURN 
-A liczenie -s 192.168.16.47 -j RETURN 
-A liczenie -d 192.168.16.50 -j RETURN 
-A liczenie -s 192.168.16.50 -j RETURN 
-A liczenie -d 192.168.16.51 -j RETURN 
-A liczenie -s 192.168.16.51 -j RETURN 
-A liczenie -d 192.168.16.66 -j RETURN 
-A liczenie -s 192.168.16.66 -j RETURN 
-A liczenie -d 192.168.16.134 -j RETURN 
-A liczenie -s 192.168.16.134 -j RETURN 
-A liczenie -d 192.168.16.135 -j RETURN 
-A liczenie -s 192.168.16.135 -j RETURN 
-A liczenie -d 192.168.16.150 -j RETURN 
-A liczenie -s 192.168.16.150 -j RETURN 
-A liczenie -d 192.168.16.198 -j RETURN 
-A liczenie -s 192.168.16.198 -j RETURN 
-A liczenie -d 192.168.16.199 -j RETURN 
-A liczenie -s 192.168.16.199 -j RETURN 
-A liczenie -d 192.168.16.202 -j RETURN 
-A liczenie -s 192.168.16.202 -j RETURN 
-A liczenie -d 192.168.16.203 -j RETURN 
-A liczenie -s 192.168.16.203 -j RETURN 
-A liczenie -d 192.168.16.204 -j RETURN 
-A liczenie -s 192.168.16.204 -j RETURN 
-A liczenie -d 192.168.16.209 -j RETURN 
-A liczenie -s 192.168.16.209 -j RETURN 
-A liczenie -d 192.168.16.250 -j RETURN 
-A liczenie -s 192.168.16.250 -j RETURN 
-A liczenie -d 192.168.16.251 -j RETURN 
-A liczenie -s 192.168.16.251 -j RETURN 
-A liczenie -d 192.168.16.252 -j RETURN 
-A liczenie -s 192.168.16.252 -j RETURN 
-A liczenie -d 192.168.16.253 -j RETURN 
-A liczenie -s 192.168.16.253 -j RETURN 
-A liczenie -d 192.168.16.254 -j RETURN 
-A liczenie -s 192.168.16.254 -j RETURN 
-A mrtg_traffic -d 127.0.0.1 -j RETURN 
-A mrtg_traffic -s 127.0.0.1 -j RETURN 
-A mrtg_traffic -d 192.168.16.1 -j RETURN 
-A mrtg_traffic -s 192.168.16.1 -j RETURN 
-A mrtg_traffic -d 192.168.16.2 -j RETURN 
-A mrtg_traffic -s 192.168.16.2 -j RETURN 
-A mrtg_traffic -d 192.168.16.3 -j RETURN 
-A mrtg_traffic -s 192.168.16.3 -j RETURN 
-A mrtg_traffic -d 192.168.16.4 -j RETURN 
-A mrtg_traffic -s 192.168.16.4 -j RETURN 
-A mrtg_traffic -d 192.168.16.5 -j RETURN 
-A mrtg_traffic -s 192.168.16.5 -j RETURN 
-A mrtg_traffic -d 192.168.16.6 -j RETURN 
-A mrtg_traffic -s 192.168.16.6 -j RETURN 
-A mrtg_traffic -d 192.168.16.7 -j RETURN 
-A mrtg_traffic -s 192.168.16.7 -j RETURN 
-A mrtg_traffic -d 192.168.16.8 -j RETURN 
-A mrtg_traffic -s 192.168.16.8 -j RETURN 
-A mrtg_traffic -d 192.168.16.9 -j RETURN 
-A mrtg_traffic -s 192.168.16.9 -j RETURN 
-A mrtg_traffic -d 192.168.16.10 -j RETURN 
-A mrtg_traffic -s 192.168.16.10 -j RETURN 
-A mrtg_traffic -d 192.168.16.11 -j RETURN 
-A mrtg_traffic -s 192.168.16.11 -j RETURN 
-A mrtg_traffic -d 192.168.16.12 -j RETURN 
-A mrtg_traffic -s 192.168.16.12 -j RETURN 
-A mrtg_traffic -d 192.168.16.13 -j RETURN 
-A mrtg_traffic -s 192.168.16.13 -j RETURN 
-A mrtg_traffic -d 192.168.16.14 -j RETURN 
-A mrtg_traffic -s 192.168.16.14 -j RETURN 
-A mrtg_traffic -d 192.168.16.15 -j RETURN 
-A mrtg_traffic -s 192.168.16.15 -j RETURN 
-A mrtg_traffic -d 192.168.16.16 -j RETURN 
-A mrtg_traffic -s 192.168.16.16 -j RETURN 
-A mrtg_traffic -d 192.168.16.17 -j RETURN 
-A mrtg_traffic -s 192.168.16.17 -j RETURN 
-A mrtg_traffic -d 192.168.16.18 -j RETURN 
-A mrtg_traffic -s 192.168.16.18 -j RETURN 
-A mrtg_traffic -d 192.168.16.19 -j RETURN 
-A mrtg_traffic -s 192.168.16.19 -j RETURN 
-A mrtg_traffic -d 192.168.16.20 -j RETURN 
-A mrtg_traffic -s 192.168.16.20 -j RETURN 
-A mrtg_traffic -d 192.168.16.21 -j RETURN 
-A mrtg_traffic -s 192.168.16.21 -j RETURN 
-A mrtg_traffic -d 192.168.16.22 -j RETURN 
-A mrtg_traffic -s 192.168.16.22 -j RETURN 
-A mrtg_traffic -d 192.168.16.23 -j RETURN 
-A mrtg_traffic -s 192.168.16.23 -j RETURN 
-A mrtg_traffic -d 192.168.16.24 -j RETURN 
-A mrtg_traffic -s 192.168.16.24 -j RETURN 
-A mrtg_traffic -d 192.168.16.25 -j RETURN 
-A mrtg_traffic -s 192.168.16.25 -j RETURN 
-A mrtg_traffic -d 192.168.16.26 -j RETURN 
-A mrtg_traffic -s 192.168.16.26 -j RETURN 
-A mrtg_traffic -d 192.168.16.27 -j RETURN 
-A mrtg_traffic -s 192.168.16.27 -j RETURN 
-A mrtg_traffic -d 192.168.16.28 -j RETURN 
-A mrtg_traffic -s 192.168.16.28 -j RETURN 
-A mrtg_traffic -d 192.168.16.29 -j RETURN 
-A mrtg_traffic -s 192.168.16.29 -j RETURN 
-A mrtg_traffic -d 192.168.16.30 -j RETURN 
-A mrtg_traffic -s 192.168.16.30 -j RETURN 
-A mrtg_traffic -d 192.168.16.31 -j RETURN 
-A mrtg_traffic -s 192.168.16.31 -j RETURN 
-A mrtg_traffic -d 192.168.16.32 -j RETURN 
-A mrtg_traffic -s 192.168.16.32 -j RETURN 
-A mrtg_traffic -d 192.168.16.33 -j RETURN 
-A mrtg_traffic -s 192.168.16.33 -j RETURN 
-A mrtg_traffic -d 192.168.16.34 -j RETURN 
-A mrtg_traffic -s 192.168.16.34 -j RETURN 
-A mrtg_traffic -d 192.168.16.35 -j RETURN 
-A mrtg_traffic -s 192.168.16.35 -j RETURN 
-A mrtg_traffic -d 192.168.16.36 -j RETURN 
-A mrtg_traffic -s 192.168.16.36 -j RETURN 
-A mrtg_traffic -d 192.168.16.37 -j RETURN 
-A mrtg_traffic -s 192.168.16.37 -j RETURN 
-A mrtg_traffic -d 192.168.16.38 -j RETURN 
-A mrtg_traffic -s 192.168.16.38 -j RETURN 
-A mrtg_traffic -d 192.168.16.39 -j RETURN 
-A mrtg_traffic -s 192.168.16.39 -j RETURN 
-A mrtg_traffic -d 192.168.16.40 -j RETURN 
-A mrtg_traffic -s 192.168.16.40 -j RETURN 
-A mrtg_traffic -d 192.168.16.50 -j RETURN 
-A mrtg_traffic -s 192.168.16.50 -j RETURN 
-A mrtg_traffic -d 192.168.16.51 -j RETURN 
-A mrtg_traffic -s 192.168.16.51 -j RETURN 
-A mrtg_traffic -d 192.168.16.66 -j RETURN 
-A mrtg_traffic -s 192.168.16.66 -j RETURN 
-A mrtg_traffic -d 192.168.16.134 -j RETURN 
-A mrtg_traffic -s 192.168.16.134 -j RETURN 
-A mrtg_traffic -d 192.168.16.150 -j RETURN 
-A mrtg_traffic -s 192.168.16.150 -j RETURN 
-A mrtg_traffic -d 192.168.16.198 -j RETURN 
-A mrtg_traffic -s 192.168.16.198 -j RETURN 
-A mrtg_traffic -d 192.168.16.199 -j RETURN 
-A mrtg_traffic -s 192.168.16.199 -j RETURN 
-A mrtg_traffic -d 192.168.16.202 -j RETURN 
-A mrtg_traffic -s 192.168.16.202 -j RETURN 
-A mrtg_traffic -d 192.168.16.203 -j RETURN 
-A mrtg_traffic -s 192.168.16.203 -j RETURN 
-A mrtg_traffic -d 192.168.16.204 -j RETURN 
-A mrtg_traffic -s 192.168.16.204 -j RETURN 
-A mrtg_traffic -d 192.168.16.209 -j RETURN 
-A mrtg_traffic -s 192.168.16.209 -j RETURN 
-A mrtg_traffic -d 192.168.16.251 -j RETURN 
-A mrtg_traffic -s 192.168.16.251 -j RETURN 
-A mrtg_traffic -d 192.168.16.252 -j RETURN 
-A mrtg_traffic -s 192.168.16.252 -j RETURN 
-A mrtg_traffic -d 192.168.16.253 -j RETURN 
-A mrtg_traffic -s 192.168.16.253 -j RETURN 
-A mrtg_traffic -d 192.168.16.254 -j RETURN 
-A mrtg_traffic -s 192.168.16.254 -j RETURN 
COMMIT
# Completed on Tue Jan  9 16:02:40 2007
# Generated by iptables-save v1.3.4 on Tue Jan  9 16:02:40 2007
*nat
:PREROUTING ACCEPT [111785:6732610]
:POSTROUTING ACCEPT [6647:543162]
:OUTPUT ACCEPT [808:53960]
-A PREROUTING -i eth0 -p udp -m udp --dport 34000 -j DNAT --to-destination 192.168.16.40  
-A PREROUTING -i eth0 -p udp -m udp --dport 34001 -j DNAT --to-destination 192.168.16.202 
-A PREROUTING -i eth0 -p udp -m udp --dport 34002 -j DNAT --to-destination 192.168.16.203 
-A PREROUTING -i eth0 -p udp -m udp --dport 34003 -j DNAT --to-destination 192.168.16.204 
-A PREROUTING -i eth0 -p udp -m udp --dport 34004 -j DNAT --to-destination 192.168.16.209 
-A PREROUTING -i eth0 -p tcp -m tcp --dport 34000 -j DNAT --to-destination 192.168.16.40 
-A PREROUTING -i eth0 -p tcp -m tcp --dport 6543 -j DNAT --to-destination 192.168.16.40
-A PREROUTING -i eth0 -p tcp -m tcp --dport 23 -j DNAT --to-destination 192.168.16.150
-A PREROUTING -i eth0 -p udp -m udp --dport 23 -j DNAT --to-destination 192.168.16.150
-A PREROUTING -i eth0 -p udp -m udp --dport 33000 -j DNAT --to-destination 192.168.16.40 
-A POSTROUTING -o eth0 -j MASQUERADE 
COMMIT
# Completed on Tue Jan  9 16:02:40 2007

Autor:	agmuz [ piątek, 16 lutego 2007, 22:07 ]
Tytuł:	iptables
Witam Z czasem zaśmieciły się reguły iptables. Po wgraniu nowego niceshapera0.6 jak zrobiłem iptables save powpisywał mi troche linijek. Niektóre z nich są zdublowane ale nie mam pewności czy można je usunąć. Proszę o pomoc. : [/] [] () # Generated by iptables-save v1.3.4 on Tue Jan 9 16:02:40 2007 mangle :PREROUTING ACCEPT [6675384:4898144565] :INPUT ACCEPT [114012:12840585] :FORWARD ACCEPT [6568274:4886489354] :OUTPUT ACCEPT [97499:11524962] :POSTROUTING ACCEPT [6663811:4897871467] :niceshaper_dl - [0:0] :niceshaper_ul - [0:0] -A PREROUTING -p tcp -j CONNMARK --restore-mark -A PREROUTING -p tcp -m mark ! --mark 0x0 -j ACCEPT -A PREROUTING -m ipp2p --ipp2p -j MARK --set-mark 0x999 -A PREROUTING -p tcp -m mark --mark 0x999 -j CONNMARK --save-mark -A PREROUTING -p tcp -j CONNMARK --restore-mark -A PREROUTING -p tcp -m mark ! --mark 0x0 -j ACCEPT -A PREROUTING -m ipp2p --ipp2p -j MARK --set-mark 0x999 -A PREROUTING -p tcp -m mark --mark 0x999 -j CONNMARK --save-mark -A PREROUTING -p tcp -j CONNMARK --restore-mark -A PREROUTING -p tcp -m mark ! --mark 0x0 -j ACCEPT -A PREROUTING -m ipp2p --ipp2p -j MARK --set-mark 0x999 -A PREROUTING -p tcp -m mark --mark 0x999 -j CONNMARK --save-mark -A PREROUTING -p tcp -j CONNMARK --restore-mark -A PREROUTING -p tcp -m mark ! --mark 0x0 -j ACCEPT -A PREROUTING -m ipp2p --ipp2p -j MARK --set-mark 0x999 -A PREROUTING -p tcp -m mark --mark 0x999 -j CONNMARK --save-mark -A PREROUTING -p tcp -j CONNMARK --restore-mark -A PREROUTING -p tcp -m mark ! --mark 0x0 -j ACCEPT -A PREROUTING -m ipp2p --ipp2p -j MARK --set-mark 0x999 -A PREROUTING -p tcp -m mark --mark 0x999 -j CONNMARK --save-mark -A PREROUTING -p tcp -j CONNMARK --restore-mark -A PREROUTING -p tcp -m mark ! --mark 0x0 -j ACCEPT -A PREROUTING -m ipp2p --ipp2p -j MARK --set-mark 0x999 -A PREROUTING -p tcp -m mark --mark 0x999 -j CONNMARK --save-mark -A PREROUTING -s 192.168.16.0/255.255.255.0 -i eth1 -j niceshaper_ul -A INPUT -d 83.19.245.172 -i eth0 -j niceshaper_dl -A OUTPUT -s 83.19.245.172 -o eth0 -j niceshaper_ul -A POSTROUTING -d 192.168.16.0/255.255.255.0 -o eth1 -j niceshaper_dl -A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2 -A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3 -A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2 -A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3 -A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2 -A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3 -A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2 -A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3 -A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2 -A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3 -A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2 -A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3 -A niceshaper_dl -s 192.168.16.1 -d 192.168.16.0/255.255.255.0 -o eth1 -j RETURN -A niceshaper_dl -s 83.19.245.172 -d 192.168.16.0/255.255.255.0 -o eth1 -j RETURN -A niceshaper_dl -A niceshaper_dl -d 83.19.245.172 -i eth0 -j RETURN -A niceshaper_dl -d 192.168.16.3 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.4 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.5 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.6 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.7 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.8 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.9 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.10 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.11 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.12 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.13 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.14 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.15 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.16 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.17 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.18 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.19 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.20 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.21 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.22 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.25 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.24 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.23 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.26 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.27 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.28 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.29 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.30 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.31 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.32 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.33 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.34 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.37 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.39 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.40 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.44 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.50 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.51 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.66 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.134 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.135 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.150 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.199 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.202 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.203 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.204 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.209 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.251 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.251 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.252 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.253 -o eth1 -j IMQ --todev 1 -A niceshaper_dl -d 192.168.16.254 -o eth1 -j IMQ --todev 1 -A niceshaper_ul -s 192.168.16.0/255.255.255.0 -d 192.168.16.1 -i eth1 -j RETURN -A niceshaper_ul -s 192.168.16.0/255.255.255.0 -d 83.19.245.172 -i eth1 -j RETURN -A niceshaper_ul -A niceshaper_ul -s 83.19.245.172 -o eth0 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.3 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.4 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.5 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.6 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.7 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.8 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.9 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.10 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.11 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.12 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.13 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.14 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.15 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.16 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.17 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.18 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.19 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.20 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.21 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.22 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.25 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.24 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.23 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.26 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.27 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.28 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.29 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.30 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.31 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.32 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.33 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.34 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.37 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.39 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.40 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.44 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.50 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.51 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.66 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.134 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.135 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.150 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.199 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.202 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.203 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.204 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.209 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.251 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.251 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.252 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.253 -i eth1 -j IMQ --todev 0 -A niceshaper_ul -s 192.168.16.254 -i eth1 -j IMQ --todev 0 COMMIT # Completed on Tue Jan 9 16:02:40 2007 # Generated by iptables-save v1.3.4 on Tue Jan 9 16:02:40 2007 filter :INPUT DROP [7515:654958] :FORWARD DROP [1914:140053] :OUTPUT ACCEPT [97499:11524962] :liczenie - [0:0] :mrtg_traffic - [0:0] -A INPUT -i lo -j ACCEPT -A INPUT -p tcp -m multiport --dports 135,445 -j DROP -A INPUT -p tcp -m tcp --dport 113 -j REJECT --reject-with icmp-port-unreachable -A INPUT -p tcp -m tcp --dport 1080 -j REJECT --reject-with icmp-port-unreachable -A INPUT -i eth0 -p tcp -m tcp --dport 80 -j ACCEPT -A INPUT -p icmp -m icmp --icmp-type 8 -m limit --limit 1/sec -j ACCEPT -A INPUT -i ! eth0 -j ACCEPT -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 1550 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 1331 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 2499 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 2502 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 2500 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 2572 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 10111 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 1000 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 10110 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 6650 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 6666 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 6543 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5656 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5905 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5678 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5000 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 6677 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 6667 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5671 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 6543 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 22 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 8282 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 8026 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 8888 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5432 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5511 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5566 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5555 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 34001 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 34002 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 34003 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 34004 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 34000 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 33000 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5567 -j ACCEPT -A INPUT -i eth0 -p tcp -m tcp --dport 8030 -j ACCEPT -A INPUT -i eth0 -p tcp -m tcp --dport 1550 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 23 -j ACCEPT -A FORWARD -j liczenie -A FORWARD -d 217.17.41.0/255.255.255.0 -o eth0 -p tcp -m tcp --dport 443 -j REJECT --reject-with icmp-port-unreachable -A FORWARD -j mrtg_traffic -A FORWARD -s 192.168.16.0/255.255.255.0 -p tcp -m tcp --tcp-flags SYN,RST,ACK SYN -m connlimit --connlimit-above 200 --connlimit-mask 32 -j DROP -A FORWARD -d 192.168.16.22 -p tcp --syn -m connlimit --connlimit-above 10 --connlimit-mask 0 -j DROP #-A FORWARD -s 192.168.16.0/24 -p tcp --tcp-flags SYN,RST,ACK SYN -m connlimit --connlimit-above 100 --connlimit-mask 32 -j DROP ################ #-I FORWARD -d 192.168.16.22 -p udp -j DROP #-I FORWARD -d 192.168.16.22 -p udp -m limit --limit 1/s -j ACCEPT #-I FORWARD -s 192.168.16.22 -p udp -j DROP #-I FORWARD -s 192.168.16.22 -p udp -m limit --limit 1/s -j ACCEPT ############## -I FORWARD -d 192.168.16.3 -p udp -j DROP -I FORWARD -d 192.168.16.3 -p udp -m limit --limit 1/s -j ACCEPT -I FORWARD -s 192.168.16.3 -p udp -j DROP -I FORWARD -s 192.168.16.3 -p udp -m limit --limit 1/s -j ACCEPT ############## -A FORWARD -d 217.17.41.0/255.255.255.0 -o eth0 -p tcp -m tcp --dport 443 -j REJECT --reject-with icmp-port-unreachable -A FORWARD -d 192.168.16.40 -p udp -m udp --dport 34000 -j ACCEPT -A FORWARD -d 192.168.16.209 -p udp -m udp --dport 33000 -j ACCEPT -A FORWARD -d 217.17.41.0/255.255.255.0 -o eth0 -p tcp -m tcp --dport 443 -j REJECT --reject-with icmp-port-unreachable -A FORWARD -d 192.168.16.40 -p udp -m udp --dport 5567 -j ACCEPT -A FORWARD -d 217.17.41.0/255.255.255.0 -o eth0 -p tcp -m tcp --dport 443 -j REJECT --reject-with icmp-port-unreachable -A FORWARD -d 217.17.41.0/255.255.255.0 -o eth0 -p tcp -m tcp --dport 443 -j REJECT --reject-with icmp-port-unreachable -A FORWARD -d 192.168.16.2 -p tcp -m tcp --dport 4444 -j ACCEPT -A FORWARD -d 192.168.16.40 -p tcp -m tcp --dport 34000 -j ACCEPT -A FORWARD -d 192.168.16.60 -p tcp -m tcp --dport 6346 -j ACCEPT -A FORWARD -d 192.168.16.60 -p tcp -m tcp --dport 3669 -j ACCEPT -A FORWARD -d 192.168.16.60 -p tcp -m tcp --dport 6881 -j ACCEPT -A FORWARD -d 192.168.16.60 -p tcp -m tcp --dport 4662 -j ACCEPT -A FORWARD -d 192.168.16.60 -p udp -m udp --dport 5737 -j ACCEPT -A FORWARD -d 192.168.16.40 -p tcp -m tcp --dport 5567 -j ACCEPT -A FORWARD -d 192.168.16.150 -p tcp -m tcp --dport 23 -j ACCEPT -A FORWARD -d 217.17.41.0/255.255.255.0 -o eth0 -p tcp -m tcp --dport 443 -j REJECT --reject-with icmp-port-unreachable -A FORWARD -o lo -j ACCEPT -A FORWARD -p tcp -m multiport --dports 135,445 -j DROP -A FORWARD -i ! eth0 -j ACCEPT -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT -A liczenie -d 192.168.16.2 -j RETURN -A liczenie -s 192.168.16.2 -j RETURN -A liczenie -d 192.168.16.3 -j RETURN -A liczenie -s 192.168.16.3 -j RETURN -A liczenie -d 192.168.16.4 -j RETURN -A liczenie -s 192.168.16.4 -j RETURN -A liczenie -d 192.168.16.5 -j RETURN -A liczenie -s 192.168.16.5 -j RETURN -A liczenie -d 192.168.16.6 -j RETURN -A liczenie -s 192.168.16.6 -j RETURN -A liczenie -d 192.168.16.7 -j RETURN -A liczenie -s 192.168.16.7 -j RETURN -A liczenie -d 192.168.16.8 -j RETURN -A liczenie -s 192.168.16.8 -j RETURN -A liczenie -d 192.168.16.9 -j RETURN -A liczenie -s 192.168.16.9 -j RETURN -A liczenie -d 192.168.16.10 -j RETURN -A liczenie -s 192.168.16.10 -j RETURN -A liczenie -d 192.168.16.11 -j RETURN -A liczenie -s 192.168.16.11 -j RETURN -A liczenie -d 192.168.16.12 -j RETURN -A liczenie -s 192.168.16.12 -j RETURN -A liczenie -d 192.168.16.13 -j RETURN -A liczenie -s 192.168.16.13 -j RETURN -A liczenie -d 192.168.16.14 -j RETURN -A liczenie -s 192.168.16.14 -j RETURN -A liczenie -d 192.168.16.15 -j RETURN -A liczenie -s 192.168.16.15 -j RETURN -A liczenie -d 192.168.16.16 -j RETURN -A liczenie -s 192.168.16.16 -j RETURN -A liczenie -d 192.168.16.17 -j RETURN -A liczenie -s 192.168.16.17 -j RETURN -A liczenie -d 192.168.16.18 -j RETURN -A liczenie -s 192.168.16.18 -j RETURN -A liczenie -d 192.168.16.19 -j RETURN -A liczenie -s 192.168.16.19 -j RETURN -A liczenie -d 192.168.16.20 -j RETURN -A liczenie -s 192.168.16.20 -j RETURN -A liczenie -d 192.168.16.21 -j RETURN -A liczenie -s 192.168.16.21 -j RETURN -A liczenie -d 192.168.16.22 -j RETURN -A liczenie -s 192.168.16.22 -j RETURN -A liczenie -d 192.168.16.23 -j RETURN -A liczenie -s 192.168.16.23 -j RETURN -A liczenie -d 192.168.16.24 -j RETURN -A liczenie -s 192.168.16.24 -j RETURN -A liczenie -d 192.168.16.25 -j RETURN -A liczenie -s 192.168.16.25 -j RETURN -A liczenie -d 192.168.16.26 -j RETURN -A liczenie -s 192.168.16.26 -j RETURN -A liczenie -d 192.168.16.27 -j RETURN -A liczenie -s 192.168.16.27 -j RETURN -A liczenie -d 192.168.16.28 -j RETURN -A liczenie -s 192.168.16.28 -j RETURN -A liczenie -d 192.168.16.29 -j RETURN -A liczenie -s 192.168.16.29 -j RETURN -A liczenie -d 192.168.16.30 -j RETURN -A liczenie -s 192.168.16.30 -j RETURN -A liczenie -d 192.168.16.31 -j RETURN -A liczenie -s 192.168.16.31 -j RETURN -A liczenie -d 192.168.16.32 -j RETURN -A liczenie -s 192.168.16.32 -j RETURN -A liczenie -d 192.168.16.33 -j RETURN -A liczenie -s 192.168.16.33 -j RETURN -A liczenie -d 192.168.16.34 -j RETURN -A liczenie -s 192.168.16.34 -j RETURN -A liczenie -d 192.168.16.35 -j RETURN -A liczenie -s 192.168.16.35 -j RETURN -A liczenie -d 192.168.16.36 -j RETURN -A liczenie -s 192.168.16.36 -j RETURN -A liczenie -d 192.168.16.37 -j RETURN -A liczenie -s 192.168.16.37 -j RETURN -A liczenie -d 192.168.16.38 -j RETURN -A liczenie -s 192.168.16.38 -j RETURN -A liczenie -d 192.168.16.39 -j RETURN -A liczenie -s 192.168.16.39 -j RETURN -A liczenie -d 192.168.16.40 -j RETURN -A liczenie -s 192.168.16.40 -j RETURN -A liczenie -d 192.168.16.44 -j RETURN -A liczenie -s 192.168.16.44 -j RETURN -A liczenie -d 192.168.16.46 -j RETURN -A liczenie -s 192.168.16.46 -j RETURN -A liczenie -d 192.168.16.47 -j RETURN -A liczenie -s 192.168.16.47 -j RETURN -A liczenie -d 192.168.16.50 -j RETURN -A liczenie -s 192.168.16.50 -j RETURN -A liczenie -d 192.168.16.51 -j RETURN -A liczenie -s 192.168.16.51 -j RETURN -A liczenie -d 192.168.16.66 -j RETURN -A liczenie -s 192.168.16.66 -j RETURN -A liczenie -d 192.168.16.134 -j RETURN -A liczenie -s 192.168.16.134 -j RETURN -A liczenie -d 192.168.16.135 -j RETURN -A liczenie -s 192.168.16.135 -j RETURN -A liczenie -d 192.168.16.150 -j RETURN -A liczenie -s 192.168.16.150 -j RETURN -A liczenie -d 192.168.16.198 -j RETURN -A liczenie -s 192.168.16.198 -j RETURN -A liczenie -d 192.168.16.199 -j RETURN -A liczenie -s 192.168.16.199 -j RETURN -A liczenie -d 192.168.16.202 -j RETURN -A liczenie -s 192.168.16.202 -j RETURN -A liczenie -d 192.168.16.203 -j RETURN -A liczenie -s 192.168.16.203 -j RETURN -A liczenie -d 192.168.16.204 -j RETURN -A liczenie -s 192.168.16.204 -j RETURN -A liczenie -d 192.168.16.209 -j RETURN -A liczenie -s 192.168.16.209 -j RETURN -A liczenie -d 192.168.16.250 -j RETURN -A liczenie -s 192.168.16.250 -j RETURN -A liczenie -d 192.168.16.251 -j RETURN -A liczenie -s 192.168.16.251 -j RETURN -A liczenie -d 192.168.16.252 -j RETURN -A liczenie -s 192.168.16.252 -j RETURN -A liczenie -d 192.168.16.253 -j RETURN -A liczenie -s 192.168.16.253 -j RETURN -A liczenie -d 192.168.16.254 -j RETURN -A liczenie -s 192.168.16.254 -j RETURN -A mrtg_traffic -d 127.0.0.1 -j RETURN -A mrtg_traffic -s 127.0.0.1 -j RETURN -A mrtg_traffic -d 192.168.16.1 -j RETURN -A mrtg_traffic -s 192.168.16.1 -j RETURN -A mrtg_traffic -d 192.168.16.2 -j RETURN -A mrtg_traffic -s 192.168.16.2 -j RETURN -A mrtg_traffic -d 192.168.16.3 -j RETURN -A mrtg_traffic -s 192.168.16.3 -j RETURN -A mrtg_traffic -d 192.168.16.4 -j RETURN -A mrtg_traffic -s 192.168.16.4 -j RETURN -A mrtg_traffic -d 192.168.16.5 -j RETURN -A mrtg_traffic -s 192.168.16.5 -j RETURN -A mrtg_traffic -d 192.168.16.6 -j RETURN -A mrtg_traffic -s 192.168.16.6 -j RETURN -A mrtg_traffic -d 192.168.16.7 -j RETURN -A mrtg_traffic -s 192.168.16.7 -j RETURN -A mrtg_traffic -d 192.168.16.8 -j RETURN -A mrtg_traffic -s 192.168.16.8 -j RETURN -A mrtg_traffic -d 192.168.16.9 -j RETURN -A mrtg_traffic -s 192.168.16.9 -j RETURN -A mrtg_traffic -d 192.168.16.10 -j RETURN -A mrtg_traffic -s 192.168.16.10 -j RETURN -A mrtg_traffic -d 192.168.16.11 -j RETURN -A mrtg_traffic -s 192.168.16.11 -j RETURN -A mrtg_traffic -d 192.168.16.12 -j RETURN -A mrtg_traffic -s 192.168.16.12 -j RETURN -A mrtg_traffic -d 192.168.16.13 -j RETURN -A mrtg_traffic -s 192.168.16.13 -j RETURN -A mrtg_traffic -d 192.168.16.14 -j RETURN -A mrtg_traffic -s 192.168.16.14 -j RETURN -A mrtg_traffic -d 192.168.16.15 -j RETURN -A mrtg_traffic -s 192.168.16.15 -j RETURN -A mrtg_traffic -d 192.168.16.16 -j RETURN -A mrtg_traffic -s 192.168.16.16 -j RETURN -A mrtg_traffic -d 192.168.16.17 -j RETURN -A mrtg_traffic -s 192.168.16.17 -j RETURN -A mrtg_traffic -d 192.168.16.18 -j RETURN -A mrtg_traffic -s 192.168.16.18 -j RETURN -A mrtg_traffic -d 192.168.16.19 -j RETURN -A mrtg_traffic -s 192.168.16.19 -j RETURN -A mrtg_traffic -d 192.168.16.20 -j RETURN -A mrtg_traffic -s 192.168.16.20 -j RETURN -A mrtg_traffic -d 192.168.16.21 -j RETURN -A mrtg_traffic -s 192.168.16.21 -j RETURN -A mrtg_traffic -d 192.168.16.22 -j RETURN -A mrtg_traffic -s 192.168.16.22 -j RETURN -A mrtg_traffic -d 192.168.16.23 -j RETURN -A mrtg_traffic -s 192.168.16.23 -j RETURN -A mrtg_traffic -d 192.168.16.24 -j RETURN -A mrtg_traffic -s 192.168.16.24 -j RETURN -A mrtg_traffic -d 192.168.16.25 -j RETURN -A mrtg_traffic -s 192.168.16.25 -j RETURN -A mrtg_traffic -d 192.168.16.26 -j RETURN -A mrtg_traffic -s 192.168.16.26 -j RETURN -A mrtg_traffic -d 192.168.16.27 -j RETURN -A mrtg_traffic -s 192.168.16.27 -j RETURN -A mrtg_traffic -d 192.168.16.28 -j RETURN -A mrtg_traffic -s 192.168.16.28 -j RETURN -A mrtg_traffic -d 192.168.16.29 -j RETURN -A mrtg_traffic -s 192.168.16.29 -j RETURN -A mrtg_traffic -d 192.168.16.30 -j RETURN -A mrtg_traffic -s 192.168.16.30 -j RETURN -A mrtg_traffic -d 192.168.16.31 -j RETURN -A mrtg_traffic -s 192.168.16.31 -j RETURN -A mrtg_traffic -d 192.168.16.32 -j RETURN -A mrtg_traffic -s 192.168.16.32 -j RETURN -A mrtg_traffic -d 192.168.16.33 -j RETURN -A mrtg_traffic -s 192.168.16.33 -j RETURN -A mrtg_traffic -d 192.168.16.34 -j RETURN -A mrtg_traffic -s 192.168.16.34 -j RETURN -A mrtg_traffic -d 192.168.16.35 -j RETURN -A mrtg_traffic -s 192.168.16.35 -j RETURN -A mrtg_traffic -d 192.168.16.36 -j RETURN -A mrtg_traffic -s 192.168.16.36 -j RETURN -A mrtg_traffic -d 192.168.16.37 -j RETURN -A mrtg_traffic -s 192.168.16.37 -j RETURN -A mrtg_traffic -d 192.168.16.38 -j RETURN -A mrtg_traffic -s 192.168.16.38 -j RETURN -A mrtg_traffic -d 192.168.16.39 -j RETURN -A mrtg_traffic -s 192.168.16.39 -j RETURN -A mrtg_traffic -d 192.168.16.40 -j RETURN -A mrtg_traffic -s 192.168.16.40 -j RETURN -A mrtg_traffic -d 192.168.16.50 -j RETURN -A mrtg_traffic -s 192.168.16.50 -j RETURN -A mrtg_traffic -d 192.168.16.51 -j RETURN -A mrtg_traffic -s 192.168.16.51 -j RETURN -A mrtg_traffic -d 192.168.16.66 -j RETURN -A mrtg_traffic -s 192.168.16.66 -j RETURN -A mrtg_traffic -d 192.168.16.134 -j RETURN -A mrtg_traffic -s 192.168.16.134 -j RETURN -A mrtg_traffic -d 192.168.16.150 -j RETURN -A mrtg_traffic -s 192.168.16.150 -j RETURN -A mrtg_traffic -d 192.168.16.198 -j RETURN -A mrtg_traffic -s 192.168.16.198 -j RETURN -A mrtg_traffic -d 192.168.16.199 -j RETURN -A mrtg_traffic -s 192.168.16.199 -j RETURN -A mrtg_traffic -d 192.168.16.202 -j RETURN -A mrtg_traffic -s 192.168.16.202 -j RETURN -A mrtg_traffic -d 192.168.16.203 -j RETURN -A mrtg_traffic -s 192.168.16.203 -j RETURN -A mrtg_traffic -d 192.168.16.204 -j RETURN -A mrtg_traffic -s 192.168.16.204 -j RETURN -A mrtg_traffic -d 192.168.16.209 -j RETURN -A mrtg_traffic -s 192.168.16.209 -j RETURN -A mrtg_traffic -d 192.168.16.251 -j RETURN -A mrtg_traffic -s 192.168.16.251 -j RETURN -A mrtg_traffic -d 192.168.16.252 -j RETURN -A mrtg_traffic -s 192.168.16.252 -j RETURN -A mrtg_traffic -d 192.168.16.253 -j RETURN -A mrtg_traffic -s 192.168.16.253 -j RETURN -A mrtg_traffic -d 192.168.16.254 -j RETURN -A mrtg_traffic -s 192.168.16.254 -j RETURN COMMIT # Completed on Tue Jan 9 16:02:40 2007 # Generated by iptables-save v1.3.4 on Tue Jan 9 16:02:40 2007 *nat :PREROUTING ACCEPT [111785:6732610] :POSTROUTING ACCEPT [6647:543162] :OUTPUT ACCEPT [808:53960] -A PREROUTING -i eth0 -p udp -m udp --dport 34000 -j DNAT --to-destination 192.168.16.40 -A PREROUTING -i eth0 -p udp -m udp --dport 34001 -j DNAT --to-destination 192.168.16.202 -A PREROUTING -i eth0 -p udp -m udp --dport 34002 -j DNAT --to-destination 192.168.16.203 -A PREROUTING -i eth0 -p udp -m udp --dport 34003 -j DNAT --to-destination 192.168.16.204 -A PREROUTING -i eth0 -p udp -m udp --dport 34004 -j DNAT --to-destination 192.168.16.209 -A PREROUTING -i eth0 -p tcp -m tcp --dport 34000 -j DNAT --to-destination 192.168.16.40 -A PREROUTING -i eth0 -p tcp -m tcp --dport 6543 -j DNAT --to-destination 192.168.16.40 -A PREROUTING -i eth0 -p tcp -m tcp --dport 23 -j DNAT --to-destination 192.168.16.150 -A PREROUTING -i eth0 -p udp -m udp --dport 23 -j DNAT --to-destination 192.168.16.150 -A PREROUTING -i eth0 -p udp -m udp --dport 33000 -j DNAT --to-destination 192.168.16.40 -A POSTROUTING -o eth0 -j MASQUERADE COMMIT # Completed on Tue Jan 9 16:02:40 2007 GeSHi © Codebox Plus tu sa np duble : [/] [] () -A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2 -A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3 -A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2 -A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3 -A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2 -A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3 -A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2 -A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3 -A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2 -A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3 -A POSTROUTING -o eth0 -m mark --mark 0x999 -j IMQ --todev 2 -A POSTROUTING -o eth1 -m mark --mark 0x999 -j IMQ --todev 3 GeSHi © Codebox Plus nie działa blokowanie udp : [/] [] () -I FORWARD -d 192.168.16.3 -p udp -j DROP -I FORWARD -d 192.168.16.3 -p udp -m limit --limit 1/s -j ACCEPT -I FORWARD -s 192.168.16.3 -p udp -j DROP -I FORWARD -s 192.168.16.3 -p udp -m limit --limit 1/s -j ACCEPT GeSHi © Codebox Plus to są moje otwarcia na serwer : [/] [] () -A INPUT -i eth0 -p udp -m udp --dport 1550 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 1331 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 2499 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 2502 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 2500 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 2572 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 10111 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 1000 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 10110 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 6650 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 6666 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 6543 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5656 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5905 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5678 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5000 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 6677 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 6667 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5671 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 6543 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 22 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 8282 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 8026 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 8888 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5432 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5511 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5566 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5555 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 34001 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 34002 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 34003 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 34004 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 34000 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 33000 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 5567 -j ACCEPT -A INPUT -i eth0 -p tcp -m tcp --dport 8030 -j ACCEPT -A INPUT -i eth0 -p tcp -m tcp --dport 1550 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --dport 23 -j ACCEPT GeSHi © Codebox Plus no i moje przekierowania : [/] [] () -A PREROUTING -i eth0 -p udp -m udp --dport 34000 -j DNAT --to-destination 192.168.16.40 -A PREROUTING -i eth0 -p udp -m udp --dport 34001 -j DNAT --to-destination 192.168.16.202 -A PREROUTING -i eth0 -p udp -m udp --dport 34002 -j DNAT --to-destination 192.168.16.203 -A PREROUTING -i eth0 -p udp -m udp --dport 34003 -j DNAT --to-destination 192.168.16.204 -A PREROUTING -i eth0 -p udp -m udp --dport 34004 -j DNAT --to-destination 192.168.16.209 -A PREROUTING -i eth0 -p tcp -m tcp --dport 34000 -j DNAT --to-destination 192.168.16.40 -A PREROUTING -i eth0 -p tcp -m tcp --dport 6543 -j DNAT --to-destination 192.168.16.40 -A PREROUTING -i eth0 -p tcp -m tcp --dport 23 -j DNAT --to-destination 192.168.16.150 -A PREROUTING -i eth0 -p udp -m udp --dport 23 -j DNAT --to-destination 192.168.16.150 -A PREROUTING -i eth0 -p udp -m udp --dport 33000 -j DNAT --to-destination 192.168.16.40 GeSHi © Codebox Plus co można usunąć ?

Autor:	-MW- [ sobota, 17 lutego 2007, 02:37 ]
Tytuł:
Cytuj: iptables save to po co tego uzywasz?

Autor:	agmuz [ sobota, 17 lutego 2007, 12:35 ]
Tytuł:
moge wykasowac wszystko co ma wpisy z mrtg ? liczenie też?

Autor:	-MW- [ sobota, 17 lutego 2007, 13:26 ]
Tytuł:
wykasowalbym caly plik i uruchomil router od nowa, najprostsze wyjscie, ale liczyc sie trzeba z tym, ze nie beda dzialac regulki ktore pisales z palca, nie sa dodane do zadnego pliku. innym wyjsciem jest przegladanie regul i kasowanie zdublowanych.

Autor:	agmuz [ niedziela, 18 lutego 2007, 11:46 ]
Tytuł:
czy tę regułke ograniczania połaczeń można analogicznie użyć do udp ? tcp Cytuj: -A FORWARD -s 192.168.16.0/255.255.255.0 -p tcp -m tcp --tcp-flags SYN,RST,ACK SYN -m connlimit --connlimit-above 200 --connlimit-mask 32 -j DROP udp Cytuj: -A FORWARD -s 192.168.16.0/255.255.255.0 -p udp -m udp --udp-flags SYN,RST,ACK SYN -m connlimit --connlimit-above 200 --connlimit-mask 32 -j DROP

Freesco, NND, CDN, EOS http://forum.freesco.pl/

iptables http://forum.freesco.pl/viewtopic.php?f=22&t=14784	Strona 1 z 1

Autor:	-MW- [ niedziela, 18 lutego 2007, 15:04 ]
Tytuł:
niestety nie

Strona 1 z 1	Strefa czasowa UTC+2godz.
Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/