Projekat

Općenito

Profil

Preuzmi (26,3 KB)

Greške #13968 » iptables.txt

iptables -L na router-u sada kada mi http na internet iz lan-a ne radi - Ernad Husremović, 14.04.2008 10:16

 
Chain INPUT (policy DROP)
target prot opt source destination
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- 192.168.45.250 anywhere tcp dpt:22 state NEW,ESTABLISHED
drop_invalid all -- anywhere anywhere state INVALID
In_RULE_0 udp -- anywhere anywhere udp multiport dports 68,67,69 state NEW
In_RULE_1 all -- anywhere anywhere state NEW
Cid47FD008F15312.0 all -- 192.168.45.254 anywhere state NEW
Cid47FD008F15312.0 all -- localhost. anywhere state NEW
Cid47FD008F15312.0 all -- 10.8.0.1 anywhere state NEW
Cid47FD008F15312.0 all -- 10.8.0.2 anywhere state NEW
RULE_3 all -- 10.8.0.0/24 anywhere state NEW
RULE_3 all -- 192.168.4.0/24 anywhere state NEW
RULE_3 all -- 192.168.65.0/24 anywhere state NEW
RULE_3 all -- 192.168.44.0/24 anywhere state NEW
RULE_3 all -- 192.168.66.0/24 anywhere state NEW
RULE_3 all -- 192.168.11.0/24 anywhere state NEW
RULE_3 all -- 192.168.43.0/24 anywhere state NEW
RULE_3 all -- 192.168.55.0/24 anywhere state NEW
Cid47FD008F15312.3 all -- 10.8.0.0/24 anywhere state NEW
Cid47FD008F15312.3 all -- 192.168.4.0/24 anywhere state NEW
Cid47FD008F15312.3 all -- 192.168.65.0/24 anywhere state NEW
Cid47FD008F15312.3 all -- 192.168.44.0/24 anywhere state NEW
Cid47FD008F15312.3 all -- 192.168.66.0/24 anywhere state NEW
Cid47FD008F15312.3 all -- 192.168.11.0/24 anywhere state NEW
Cid47FD008F15312.3 all -- 192.168.43.0/24 anywhere state NEW
Cid47FD008F15312.3 all -- 192.168.55.0/24 anywhere state NEW
In_RULE_4 all -- 212.200.250.74 anywhere
Cid4801246915778.0 tcp -- anywhere anywhere tcp dpt:80 state NEW
In_RULE_7 tcp -- 10.8.0.0/24 anywhere tcp dpt:80 state NEW
In_RULE_9 icmp -- anywhere anywhere icmp type 0 code 0 state NEW
In_RULE_9 icmp -- anywhere anywhere icmp type 8 code 0 state NEW
In_RULE_10 tcp -- anywhere anywhere tcp multiport dports 22,25,443,5222,143,110,993,80,465,995,7071 state NEW
In_RULE_10 udp -- anywhere anywhere udp dpt:1194 state NEW
RULE_12 udp -- anywhere 255.255.255.255 udp multiport dports 68,67,69 state NEW
RULE_12 udp -- anywhere 192.168.45.254 udp multiport dports 68,67,69 state NEW
RULE_13 udp -- 192.168.45.254 anywhere udp multiport dports 68,67 state NEW
Cid47FD011C15312.0 icmp -- anywhere anywhere icmp type 0 code 0 state NEW
Cid47FD011C15312.0 icmp -- anywhere anywhere icmp type 8 code 0 state NEW
Cid47FD011C15312.0 tcp -- anywhere anywhere tcp multiport dports 80,22 state NEW
Cid47FD011C15312.0 udp -- anywhere anywhere udp dpt:123 state NEW
Cid47FD013A15312.0 tcp -- anywhere anywhere tcp multiport dports 22,23,80,8888 state NEW
RULE_17 all -- 192.168.45.0/24 anywhere state NEW
RULE_17 all -- 192.169.45.0/24 anywhere state NEW
RULE_17 all -- 192.168.4.0/24 anywhere state NEW
RULE_17 all -- 192.168.65.0/24 anywhere state NEW
RULE_17 all -- 192.168.44.0/24 anywhere state NEW
RULE_17 all -- 192.168.66.0/24 anywhere state NEW
RULE_17 all -- 192.168.11.0/24 anywhere state NEW
RULE_17 all -- 192.168.43.0/24 anywhere state NEW
RULE_17 all -- 192.168.55.0/24 anywhere state NEW
Cid47FD015815312.1 all -- 10.8.0.0/24 anywhere state NEW
RULE_19 all -- 10.8.0.0/24 BASE-ADDRESS.MCAST.NET/4 state NEW
RULE_20 all -- anywhere anywhere

Chain FORWARD (policy DROP)
target prot opt source destination
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
TCPMSS tcp -- anywhere anywhere tcp flags:SYN,RST/SYN TCPMSS clamp to PMTU
drop_invalid all -- anywhere anywhere state INVALID
In_RULE_0 udp -- anywhere anywhere udp multiport dports 68,67,69 state NEW
Out_RULE_0 udp -- anywhere anywhere udp multiport dports 68,67,69 state NEW
Out_RULE_2 tcp -- 192.168.45.250 anywhere tcp dpt:80 state NEW
Cid47FD008F15312.4 all -- 10.8.0.0/24 anywhere state NEW
Cid47FD008F15312.4 all -- 192.168.4.0/24 anywhere state NEW
Cid47FD008F15312.4 all -- 192.168.65.0/24 anywhere state NEW
Cid47FD008F15312.4 all -- 192.168.44.0/24 anywhere state NEW
Cid47FD008F15312.4 all -- 192.168.66.0/24 anywhere state NEW
Cid47FD008F15312.4 all -- 192.168.11.0/24 anywhere state NEW
Cid47FD008F15312.4 all -- 192.168.43.0/24 anywhere state NEW
Cid47FD008F15312.4 all -- 192.168.55.0/24 anywhere state NEW
In_RULE_4 all -- 212.200.250.74 anywhere
Out_RULE_4 all -- 212.200.250.74 anywhere
Cid47FD00AB15312.1 tcp -- anywhere anywhere tcp dpt:80
In_RULE_7 tcp -- 10.8.0.0/24 anywhere tcp dpt:80 state NEW
Out_RULE_7 tcp -- 10.8.0.0/24 anywhere tcp dpt:80 state NEW
Out_RULE_8 all -- 192.169.45.0/24 anywhere state NEW
Out_RULE_8 all -- 192.168.45.0/24 anywhere state NEW
In_RULE_9 icmp -- anywhere anywhere icmp type 0 code 0 state NEW
In_RULE_9 icmp -- anywhere anywhere icmp type 8 code 0 state NEW
Out_RULE_9 icmp -- anywhere anywhere icmp type 0 code 0 state NEW
Out_RULE_9 icmp -- anywhere anywhere icmp type 8 code 0 state NEW
In_RULE_10 tcp -- anywhere anywhere tcp multiport dports 22,25,443,5222,143,110,993,80,465,995,7071 state NEW
In_RULE_10 udp -- anywhere anywhere udp dpt:1194 state NEW
Out_RULE_11 all -- 192.169.45.0/24 anywhere state NEW
Out_RULE_11 all -- 192.168.45.0/24 anywhere state NEW
RULE_17 all -- 192.168.45.0/24 anywhere state NEW
RULE_17 all -- 192.169.45.0/24 anywhere state NEW
RULE_17 all -- 192.168.4.0/24 anywhere state NEW
RULE_17 all -- 192.168.65.0/24 anywhere state NEW
RULE_17 all -- 192.168.44.0/24 anywhere state NEW
RULE_17 all -- 192.168.66.0/24 anywhere state NEW
RULE_17 all -- 192.168.11.0/24 anywhere state NEW
RULE_17 all -- 192.168.43.0/24 anywhere state NEW
RULE_17 all -- 192.168.55.0/24 anywhere state NEW
Cid47FD015815312.2 all -- 10.8.0.0/24 anywhere state NEW
Cid47FD016515312.1 all -- 10.8.0.0/24 anywhere state NEW
RULE_20 all -- anywhere anywhere
ACCEPT tcp -- anywhere 192.168.45.250 tcp dpt:3128

Chain OUTPUT (policy DROP)
target prot opt source destination
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- anywhere 192.168.45.250 tcp spt:22 state RELATED,ESTABLISHED
drop_invalid all -- anywhere anywhere state INVALID
Out_RULE_0 udp -- anywhere anywhere udp multiport dports 68,67,69 state NEW
Out_RULE_1 all -- anywhere anywhere state NEW
Cid47FD008F15312.1 all -- 192.168.45.254 anywhere state NEW
Cid47FD008F15312.1 all -- localhost. anywhere state NEW
Cid47FD008F15312.1 all -- 10.8.0.1 anywhere state NEW
Cid47FD008F15312.1 all -- 10.8.0.2 anywhere state NEW
RULE_3 all -- anywhere 10.8.0.0/24 state NEW
RULE_3 all -- anywhere 192.168.4.0/24 state NEW
RULE_3 all -- anywhere 192.168.65.0/24 state NEW
RULE_3 all -- anywhere 192.168.44.0/24 state NEW
RULE_3 all -- anywhere 192.168.66.0/24 state NEW
RULE_3 all -- anywhere 192.168.11.0/24 state NEW
RULE_3 all -- anywhere 192.168.43.0/24 state NEW
RULE_3 all -- anywhere 192.168.55.0/24 state NEW
Cid47FD008F15312.2 all -- 10.8.0.0/24 anywhere state NEW
Cid47FD008F15312.2 all -- 192.168.4.0/24 anywhere state NEW
Cid47FD008F15312.2 all -- 192.168.65.0/24 anywhere state NEW
Cid47FD008F15312.2 all -- 192.168.44.0/24 anywhere state NEW
Cid47FD008F15312.2 all -- 192.168.66.0/24 anywhere state NEW
Cid47FD008F15312.2 all -- 192.168.11.0/24 anywhere state NEW
Cid47FD008F15312.2 all -- 192.168.43.0/24 anywhere state NEW
Cid47FD008F15312.2 all -- 192.168.55.0/24 anywhere state NEW
Cid47FD00AB15312.0 tcp -- anywhere anywhere tcp dpt:80
Out_RULE_7 tcp -- 10.8.0.0/24 anywhere tcp dpt:80 state NEW
Out_RULE_8 all -- 192.169.45.0/24 anywhere state NEW
Out_RULE_8 all -- 192.168.45.0/24 anywhere state NEW
Out_RULE_9 icmp -- anywhere anywhere icmp type 0 code 0 state NEW
Out_RULE_9 icmp -- anywhere anywhere icmp type 8 code 0 state NEW
Out_RULE_11 all -- 192.169.45.0/24 anywhere state NEW
Out_RULE_11 all -- 192.168.45.0/24 anywhere state NEW
RULE_12 udp -- anywhere 255.255.255.255 udp multiport dports 68,67,69 state NEW
RULE_12 udp -- anywhere 192.168.45.254 udp multiport dports 68,67,69 state NEW
RULE_13 udp -- 192.168.45.254 anywhere udp multiport dports 68,67 state NEW
RULE_14 icmp -- anywhere anywhere icmp type 0 code 0 state NEW
RULE_14 icmp -- anywhere anywhere icmp type 8 code 0 state NEW
RULE_14 tcp -- anywhere anywhere tcp multiport dports 80,22 state NEW
RULE_14 udp -- anywhere anywhere udp dpt:123 state NEW
RULE_15 tcp -- anywhere 192.168.45.0/24 tcp multiport dports 53,3128 state NEW
RULE_15 udp -- anywhere 192.168.45.0/24 udp multiport dports 53,514 state NEW
RULE_17 all -- 192.168.45.0/24 anywhere state NEW
RULE_17 all -- 192.169.45.0/24 anywhere state NEW
RULE_17 all -- 192.168.4.0/24 anywhere state NEW
RULE_17 all -- 192.168.65.0/24 anywhere state NEW
RULE_17 all -- 192.168.44.0/24 anywhere state NEW
RULE_17 all -- 192.168.66.0/24 anywhere state NEW
RULE_17 all -- 192.168.11.0/24 anywhere state NEW
RULE_17 all -- 192.168.43.0/24 anywhere state NEW
RULE_17 all -- 192.168.55.0/24 anywhere state NEW
Cid47FD015815312.0 all -- 10.8.0.0/24 anywhere state NEW
Cid47FD016515312.0 all -- 10.8.0.0/24 anywhere state NEW
RULE_20 all -- anywhere anywhere

Chain Cid47FD008F15312.0 (4 references)
target prot opt source destination
RULE_3 all -- anywhere 192.168.45.254
RULE_3 all -- anywhere localhost.
RULE_3 all -- anywhere 10.8.0.1
RULE_3 all -- anywhere 10.8.0.2

Chain Cid47FD008F15312.1 (4 references)
target prot opt source destination
RULE_3 all -- anywhere 192.168.45.254
RULE_3 all -- anywhere localhost.
RULE_3 all -- anywhere 10.8.0.1
RULE_3 all -- anywhere 10.8.0.2

Chain Cid47FD008F15312.2 (8 references)
target prot opt source destination
RULE_3 all -- anywhere 10.8.0.0/24
RULE_3 all -- anywhere 192.168.4.0/24
RULE_3 all -- anywhere 192.168.65.0/24
RULE_3 all -- anywhere 192.168.44.0/24
RULE_3 all -- anywhere 192.168.66.0/24
RULE_3 all -- anywhere 192.168.11.0/24
RULE_3 all -- anywhere 192.168.43.0/24
RULE_3 all -- anywhere 192.168.55.0/24

Chain Cid47FD008F15312.3 (8 references)
target prot opt source destination
RULE_3 all -- anywhere 10.8.0.0/24
RULE_3 all -- anywhere 192.168.4.0/24
RULE_3 all -- anywhere 192.168.65.0/24
RULE_3 all -- anywhere 192.168.44.0/24
RULE_3 all -- anywhere 192.168.66.0/24
RULE_3 all -- anywhere 192.168.11.0/24
RULE_3 all -- anywhere 192.168.43.0/24
RULE_3 all -- anywhere 192.168.55.0/24

Chain Cid47FD008F15312.4 (8 references)
target prot opt source destination
RULE_3 all -- anywhere 10.8.0.0/24
RULE_3 all -- anywhere 192.168.4.0/24
RULE_3 all -- anywhere 192.168.65.0/24
RULE_3 all -- anywhere 192.168.44.0/24
RULE_3 all -- anywhere 192.168.66.0/24
RULE_3 all -- anywhere 192.168.11.0/24
RULE_3 all -- anywhere 192.168.43.0/24
RULE_3 all -- anywhere 192.168.55.0/24

Chain Cid47FD00AB15312.0 (1 references)
target prot opt source destination
Out_RULE_6 all -- 192.168.45.0/24 anywhere
Out_RULE_6 all -- 192.169.45.0/24 anywhere

Chain Cid47FD00AB15312.1 (1 references)
target prot opt source destination
Out_RULE_6 all -- 192.168.45.0/24 anywhere
Out_RULE_6 all -- 192.169.45.0/24 anywhere

Chain Cid47FD011C15312.0 (4 references)
target prot opt source destination
RULE_14 all -- 192.168.45.254 anywhere
RULE_14 all -- SE400.PPPoE-1829.sa.bih.net.ba anywhere
RULE_14 all -- 10.0.195.129 anywhere
RULE_14 all -- 10.8.0.1 anywhere
RULE_14 all -- 10.8.0.2 anywhere

Chain Cid47FD013A15312.0 (1 references)
target prot opt source destination
RULE_16 all -- 192.168.45.0/24 anywhere
RULE_16 all -- 192.169.45.0/24 anywhere

Chain Cid47FD015815312.0 (1 references)
target prot opt source destination
RULE_18 all -- anywhere 192.168.45.0/24
RULE_18 all -- anywhere 192.169.45.0/24

Chain Cid47FD015815312.1 (1 references)
target prot opt source destination
RULE_18 all -- anywhere 192.168.45.0/24
RULE_18 all -- anywhere 192.169.45.0/24

Chain Cid47FD015815312.2 (1 references)
target prot opt source destination
RULE_18 all -- anywhere 192.168.45.0/24
RULE_18 all -- anywhere 192.169.45.0/24

Chain Cid47FD016515312.0 (1 references)
target prot opt source destination
RULE_19 all -- anywhere 80.65.85.0/24
RULE_19 all -- anywhere 208.0.0.0/4
RULE_19 all -- anywhere 200.0.0.0/5
RULE_19 all -- anywhere 196.0.0.0/6
RULE_19 all -- anywhere 195.224.0.0/11
RULE_19 all -- anywhere 195.222.0.0/15
RULE_19 all -- anywhere 240.0.0.0/5
RULE_19 all -- anywhere 248.0.0.0/6
RULE_19 all -- anywhere 252.0.0.0/7
RULE_19 all -- anywhere 254.0.0.0/8
RULE_19 all -- anywhere 255.0.0.0/9
RULE_19 all -- anywhere 255.128.0.0/10
RULE_19 all -- anywhere 255.192.0.0/11
RULE_19 all -- anywhere 255.224.0.0/12
RULE_19 all -- anywhere 255.240.0.0/13
RULE_19 all -- anywhere 255.248.0.0/14
RULE_19 all -- anywhere 255.252.0.0/15
RULE_19 all -- anywhere 255.254.0.0/16
RULE_19 all -- anywhere 255.255.0.0

Chain Cid47FD016515312.1 (1 references)
target prot opt source destination
RULE_19 all -- anywhere 80.65.85.0/24
RULE_19 all -- anywhere 208.0.0.0/4
RULE_19 all -- anywhere 200.0.0.0/5
RULE_19 all -- anywhere 196.0.0.0/6
RULE_19 all -- anywhere 195.224.0.0/11
RULE_19 all -- anywhere 195.222.0.0/15
RULE_19 all -- anywhere 240.0.0.0/5
RULE_19 all -- anywhere 248.0.0.0/6
RULE_19 all -- anywhere 252.0.0.0/7
RULE_19 all -- anywhere 254.0.0.0/8
RULE_19 all -- anywhere 255.0.0.0/9
RULE_19 all -- anywhere 255.128.0.0/10
RULE_19 all -- anywhere 255.192.0.0/11
RULE_19 all -- anywhere 255.224.0.0/12
RULE_19 all -- anywhere 255.240.0.0/13
RULE_19 all -- anywhere 255.248.0.0/14
RULE_19 all -- anywhere 255.252.0.0/15
RULE_19 all -- anywhere 255.254.0.0/16
RULE_19 all -- anywhere 255.255.0.0

Chain Cid4801246915778.0 (1 references)
target prot opt source destination
In_RULE_5 all -- 192.168.45.0/24 anywhere
In_RULE_5 all -- 192.169.45.0/24 anywhere

Chain In_RULE_0 (2 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `RULE 0 -- ACCEPT '
ACCEPT all -- anywhere anywhere

Chain In_RULE_1 (1 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `LOOPBACK '
ACCEPT all -- anywhere anywhere

Chain In_RULE_10 (4 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `P_BIHNET_TR '
ACCEPT all -- anywhere anywhere

Chain In_RULE_4 (2 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `DoS-1 '
DROP all -- anywhere anywhere

Chain In_RULE_5 (2 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `RULE 5 -- ACCEPT '
ACCEPT all -- anywhere anywhere

Chain In_RULE_7 (2 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `RULE 7 -- ACCEPT '
ACCEPT all -- anywhere anywhere

Chain In_RULE_9 (4 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `VPN_OK '
ACCEPT all -- anywhere anywhere

Chain Out_RULE_0 (2 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `RULE 0 -- ACCEPT '
ACCEPT all -- anywhere anywhere

Chain Out_RULE_1 (1 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `LOOPBACK '
ACCEPT all -- anywhere anywhere

Chain Out_RULE_11 (4 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `P_FZ '
ACCEPT all -- anywhere anywhere

Chain Out_RULE_2 (1 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `HTTP_PROXY_OK'
ACCEPT all -- anywhere anywhere

Chain Out_RULE_4 (1 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `DoS-1 '
DROP all -- anywhere anywhere

Chain Out_RULE_6 (4 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `ADSL_HTPP_NO'
DROP all -- anywhere anywhere

Chain Out_RULE_7 (2 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `RULE 7 -- ACCEPT '
ACCEPT all -- anywhere anywhere

Chain Out_RULE_8 (4 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `P_BIHNET '
ACCEPT all -- anywhere anywhere

Chain Out_RULE_9 (4 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `VPN_OK '
ACCEPT all -- anywhere anywhere

Chain RULE_12 (4 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `GP_DHCP_OK '
ACCEPT all -- anywhere anywhere

Chain RULE_13 (2 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `GP_DHCP_OK2 '
ACCEPT all -- anywhere anywhere

Chain RULE_14 (9 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `GP_FW_OK '
ACCEPT all -- anywhere anywhere

Chain RULE_15 (2 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `GP_FW_LAN_OK '
ACCEPT all -- anywhere anywhere

Chain RULE_16 (2 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `GP_LAN_FW_OK '
ACCEPT all -- anywhere anywhere

Chain RULE_17 (27 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `GP_LAN_OK '
ACCEPT all -- anywhere anywhere

Chain RULE_18 (6 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `RULE 18 -- ACCEPT '
ACCEPT all -- anywhere anywhere

Chain RULE_19 (39 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `GP_DENY '
ACCEPT all -- anywhere anywhere

Chain RULE_20 (3 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `RULE 20 -- DENY '
DROP all -- anywhere anywhere

Chain RULE_3 (48 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug tcp-options ip-options prefix `PING_VPN_OK '
ACCEPT all -- anywhere anywhere

Chain drop_invalid (3 references)
target prot opt source destination
LOG all -- anywhere anywhere LOG level debug prefix `RULE -1 -- DENY '
DROP all -- anywhere anywhere
(1-1/4)