资源描述:
《suse默认的iptables》由会员上传分享,免费在线阅读,更多相关内容在工程资料-天天文库。
1、suse默认的iptables~教育资源库ChainINPUT(policyDROP)target protoptsource destinationACCEPT all -- anyit:avg3/minburst5LOGlevelit:avg3/minburst5LOGlevelit:avg3/minburst5LOGlevelp-- anypsource-quenchACCEPT icmp-- anypecho-requestACCEPT icmp-- anypecho-replyACCEPT icmp--
2、anypdestination-unreachableACCEPT icmp-- anyptime-exceededACCEPT icmp-- anypparameter-problemACCEPT icmp-- anyptimestamp-replyACCEPT icmp-- anypaddress-mask-replyACCEPT icmp-- anypprotocol-unreachableACCEPT icmp-- anypredirectLOG tcp -- anyit:avg3/minburst5tcpdp
3、t:5801flags:FIN,SYN,RST,ACK/SYNLOGlevelit:avg3/minburst5tcpdpt:5901flags:FIN,SYN,RST,ACK/SYNLOGlevelit:avg3/minburst5tcpdpt:sshflags:FIN,SYN,RST,ACK/SYNLOGlevelwarningtcp-optionsip-optionsprefix`SFW2-INext-ACC-TCP'ACCEPT tcp -- anywhere anywhere123下一页友情提醒:,特别!t
4、cpdpt:sshreject_func tcp -- anyit:avg3/minburst5PKTTYPE=multicastLOGlevelulticastLOG tcp -- anyit:avg3/minburst5tcpflags:FIN,SYN,RST,ACK/SYNLOGlevelp-- anyit:avg3/minburst5LOGlevelit:avg3/minburst5LOGlevelit:avg3/minburst5stateINVALIDLOGlevelp-port-unreachableREJECT
5、all -- anyp-proto-unreachablehugang:~#iptables-LChainINPUT(policyDROP)target protoptsource destinationACCEPT all -- anyit:avg3/minburst5LOGlevelit:avg3/minburst5LOGlevelit:avg3/minburst5LOGlevelp-- anypsource-quenchACCEPT icmp-- anypecho-requestACCEPT icmp-- an
6、ypecho-replyACCEPT icmp-- anywhere anywhere stateRELATED,E上一页123下一页友情提醒:,特别!STABLISHEDicmpdestination-unreachableACCEPT icmp-- anyptime-exceededACCEPT icmp-- anypparameter-problemACCEPT icmp-- anyptimestamp-replyACCEPT icmp-- anypaddress-mask-replyACCEPT
7、icmp-- anypprotocol-unreachableACCEPT icmp-- anypredirectLOG tcp -- anyit:avg3/minburst5tcpdpt:5801flags:FIN,SYN,RST,ACK/SYNLOGlevelit:avg3/minburst5tcpdpt:5901flags:FIN,SYN,RST,ACK/SYNLOGlevelit:avg3/minburst5tcpdpt:sshflags:FIN,SYN,RST,ACK/SYNLOGlevelit:avg3/minbur
8、st5PKTTYPE=multicastLOGlevelulticastLOG tcp -- anyit:avg3/minburst5tcpflags:FIN,SYN,RST,ACK/SYNLOGle