« Отговор #86 -: Sep 20, 2012, 19:24 »
Ето и резултата:
pland@kubuntu:~$ ifconfig
eth0 Link encap:Ethernet HWaddr -:-:-:-:-:-
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
Interrupt:43 Base address:0x4000
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:56 errors:0 dropped:0 overruns:0 frame:0
TX packets:56 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:3592 (3.5 KB) TX bytes:3592 (3.5 KB)
wlan0 Link encap:Ethernet HWaddr -:-:-:-:-:-
inet addr:192.168.1.135 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::86a6:c8ff:fe28:7b8e/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:20 errors:0 dropped:0 overruns:0 frame:0
TX packets:57 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:3062 (3.0 KB) TX bytes:11083 (11.0 KB)
pland@kubuntu:~$ sudo iptables -L
[sudo] password for pland:
Chain INPUT (policy DROP)
target prot opt source destination
BASE_INPUT_CHAIN all -- anywhere anywhere
INPUT_CHAIN all -- anywhere anywhere
HOST_BLOCK_SRC all -- anywhere anywhere
SPOOF_CHK all -- anywhere anywhere
VALID_CHK all -- anywhere anywhere
EXT_INPUT_CHAIN !icmp -- anywhere anywhere state NEW
EXT_INPUT_CHAIN icmp -- anywhere anywhere state NEW limit: avg 60/sec burst 100
EXT_ICMP_FLOOD_CHAIN icmp -- anywhere anywhere state NEW
VALID_CHK all -- anywhere anywhere
EXT_INPUT_CHAIN !icmp -- anywhere anywhere state NEW
EXT_INPUT_CHAIN icmp -- anywhere anywhere state NEW limit: avg 60/sec burst 100
EXT_ICMP_FLOOD_CHAIN icmp -- anywhere anywhere state NEW
POST_INPUT_CHAIN all -- anywhere anywhere
LOG all -- anywhere anywhere limit: avg 1/sec burst 5 LOG level info prefix "AIF:Dropped INPUT packet: "
DROP all -- anywhere anywhere
Chain FORWARD (policy DROP)
target prot opt source destination
BASE_FORWARD_CHAIN all -- anywhere anywhere
TCPMSS tcp -- anywhere anywhere tcpflags: SYN,RST/SYN TCPMSS clamp to PMTU
TCPMSS tcp -- anywhere anywhere tcpflags: SYN,RST/SYN TCPMSS clamp to PMTU
FORWARD_CHAIN all -- anywhere anywhere
HOST_BLOCK_SRC all -- anywhere anywhere
HOST_BLOCK_DST all -- anywhere anywhere
EXT_FORWARD_IN_CHAIN all -- anywhere anywhere
EXT_FORWARD_OUT_CHAIN all -- anywhere anywhere
EXT_FORWARD_IN_CHAIN all -- anywhere anywhere
EXT_FORWARD_OUT_CHAIN all -- anywhere anywhere
SPOOF_CHK all -- anywhere anywhere
POST_FORWARD_CHAIN all -- anywhere anywhere
LOG all -- anywhere anywhere limit: avg 1/min burst 3 LOG level info prefix "AIF:Dropped FORWARD packet: "
DROP all -- anywhere anywhere
Chain OUTPUT (policy DROP)
target prot opt source destination
BASE_OUTPUT_CHAIN all -- anywhere anywhere
TCPMSS tcp -- anywhere anywhere tcpflags: SYN,RST/SYN TCPMSS clamp to PMTU
TCPMSS tcp -- anywhere anywhere tcpflags: SYN,RST/SYN TCPMSS clamp to PMTU
OUTPUT_CHAIN all -- anywhere anywhere
HOST_BLOCK_DST all -- anywhere anywhere
LOG all -f anywhere anywhere limit: avg 3/min burst 5 LOG level info prefix "AIF:Fragment packet: "
DROP all -f anywhere anywhere
EXT_OUTPUT_CHAIN all -- anywhere anywhere
EXT_OUTPUT_CHAIN all -- anywhere anywhere
POST_OUTPUT_CHAIN all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
Chain BASE_FORWARD_CHAIN (1 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere state ESTABLISHED
ACCEPT tcp -- anywhere anywhere state RELATED tcp dpts:1024:65535
ACCEPT udp -- anywhere anywhere state RELATED udp dpts:1024:65535
ACCEPT icmp -- anywhere anywhere state RELATED
ACCEPT all -- anywhere anywhere
Chain BASE_INPUT_CHAIN (1 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere state ESTABLISHED
ACCEPT tcp -- anywhere anywhere state RELATED tcp dpts:1024:65535
ACCEPT udp -- anywhere anywhere state RELATED udp dpts:1024:65535
ACCEPT icmp -- anywhere anywhere state RELATED
ACCEPT all -- anywhere anywhere
Chain BASE_OUTPUT_CHAIN (1 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere state ESTABLISHED
ACCEPT all -- anywhere anywhere
Chain DMZ_FORWARD_IN_CHAIN (0 references)
target prot opt source destination
Chain DMZ_FORWARD_OUT_CHAIN (0 references)
target prot opt source destination
Chain DMZ_INET_FORWARD_CHAIN (0 references)
target prot opt source destination
Chain DMZ_INPUT_CHAIN (0 references)
target prot opt source destination
Chain DMZ_LAN_FORWARD_CHAIN (0 references)
target prot opt source destination
Chain DMZ_OUTPUT_CHAIN (0 references)
target prot opt source destination
Chain EXT_BROADCAST_CHAIN (1 references)
target prot opt source destination
LOG tcp -- anywhere anywhere tcp dpts:0:1023 limit: avg 6/min burst 2 LOG level info prefix "AIF:PRIV TCP broadcast: "
LOG udp -- anywhere anywhere udp dpts:0:1023 limit: avg 6/min burst 2 LOG level info prefix "AIF:PRIV UDP broadcast: "
LOG tcp -- anywhere anywhere tcp dpts:1024:65535 limit: avg 6/min burst 2 LOG level info prefix "AIF:UNPRIV TCP broadcast: "
LOG udp -- anywhere anywhere udp dpt:1024 limit: avg 6/min burst 2 LOG level info prefix "AIF:UNPRIV UDP broadcast: "
DROP all -- anywhere anywhere
Chain EXT_FORWARD_IN_CHAIN (2 references)
target prot opt source destination
VALID_CHK all -- anywhere anywhere
Chain EXT_FORWARD_OUT_CHAIN (2 references)
target prot opt source destination
Chain EXT_ICMP_FLOOD_CHAIN (2 references)
target prot opt source destination
LOG icmp -- anywhere anywhere icmp destination-unreachable limit: avg 12/hour burst 1 LOG level info prefix "AIF:ICMP-unreachable flood: "
POST_INPUT_DROP_CHAIN icmp -- anywhere anywhere icmp destination-unreachable
LOG icmp -- anywhere anywhere icmp time-exceeded limit: avg 12/hour burst 1 LOG level info prefix "AIF:ICMP-time-exceeded fld: "
POST_INPUT_DROP_CHAIN icmp -- anywhere anywhere icmp time-exceeded
LOG icmp -- anywhere anywhere icmp parameter-problem limit: avg 12/hour burst 1 LOG level info prefix "AIF:ICMP-param-problem fld: "
POST_INPUT_DROP_CHAIN icmp -- anywhere anywhere icmp parameter-problem
LOG icmp -- anywhere anywhere icmp echo-request limit: avg 12/hour burst 1 LOG level info prefix "AIF:ICMP-request(ping) fld: "
POST_INPUT_DROP_CHAIN icmp -- anywhere anywhere icmp echo-request
LOG icmp -- anywhere anywhere icmp echo-reply limit: avg 12/hour burst 1 LOG level info prefix "AIF:ICMP-reply(pong) flood: "
POST_INPUT_DROP_CHAIN icmp -- anywhere anywhere icmp echo-reply
LOG icmp -- anywhere anywhere icmp source-quench limit: avg 12/hour burst 1 LOG level info prefix "AIF:ICMP-source-quench fld: "
POST_INPUT_DROP_CHAIN icmp -- anywhere anywhere icmp source-quench
LOG icmp -- anywhere anywhere limit: avg 12/hour burst 1 LOG level info prefix "AIF:ICMP(other) flood: "
POST_INPUT_DROP_CHAIN icmp -- anywhere anywhere
Chain EXT_INPUT_CHAIN (4 references)
target prot opt source destination
LOG tcp -- anywhere anywhere tcp dpt:0 limit: avg 6/hour burst 1 LOG level info prefix "AIF:Port 0 OS fingerprint: "
LOG udp -- anywhere anywhere udp dpt:0 limit: avg 6/hour burst 1 LOG level info prefix "AIF:Port 0 OS fingerprint: "
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere tcp dpt:0
POST_INPUT_DROP_CHAIN udp -- anywhere anywhere udp dpt:0
LOG tcp -- anywhere anywhere tcp spt:0 limit: avg 6/hour burst 5 LOG level info prefix "AIF:TCP source port 0: "
LOG udp -- anywhere anywhere udp spt:0 limit: avg 6/hour burst 5 LOG level info prefix "AIF:UDP source port 0: "
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere tcp spt:0
POST_INPUT_DROP_CHAIN udp -- anywhere anywhere udp spt:0
ACCEPT udp -- anywhere anywhere udp spt:bootps dpt:bootpc
ACCEPT tcp -- anywhere anywhere tcp dpt:http
ACCEPT tcp -- anywhere anywhere tcp dpt:https
ACCEPT tcp -- anywhere anywhere tcp dpt:1793
ACCEPT tcp -- anywhere anywhere tcp dpt:55558
ACCEPT tcp -- anywhere anywhere tcp dpt:55585
ACCEPT tcp -- anywhere anywhere tcp dpt:54854
ACCEPT tcp -- anywhere anywhere tcp dpt:888
ACCEPT tcp -- anywhere anywhere tcp dpt:8880
ACCEPT tcp -- anywhere anywhere tcp dpt:http-alt
ACCEPT tcp -- anywhere anywhere tcp dpt:5901
ACCEPT tcp -- anywhere anywhere tcp dpt:5800
ACCEPT tcp -- anywhere anywhere tcp dpt:5902
ACCEPT tcp -- anywhere anywhere tcp dpt:5903
ACCEPT tcp -- anywhere anywhere tcp dpt:53853
ACCEPT tcp -- anywhere anywhere tcp dpt:hkp
ACCEPT tcp -- anywhere anywhere tcp dpt:webmin
ACCEPT tcp -- anywhere anywhere tcp dpt:5000
ACCEPT tcp -- anywhere anywhere tcp dpt:mmcc
ACCEPT tcp -- anywhere anywhere tcp dpt:aol
ACCEPT tcp -- anywhere anywhere tcp dpt:ftp
ACCEPT tcp -- anywhere anywhere tcp dpt:xmpp-client
ACCEPT tcp -- anywhere anywhere tcp dpt:8010
ACCEPT tcp -- anywhere anywhere tcp dpt:xmpp-server
ACCEPT tcp -- anywhere anywhere tcp dpt:5223
ACCEPT tcp -- anywhere anywhere tcp dpt:57575
ACCEPT tcp -- anywhere anywhere tcp dpt:pop3
ACCEPT tcp -- anywhere anywhere tcp dpt:pop3s
ACCEPT tcp -- anywhere anywhere tcp dpt:smtp
ACCEPT tcp -- anywhere anywhere tcp dpt:ssmtp
ACCEPT tcp -- anywhere anywhere tcp dpt:ftps
ACCEPT tcp -- anywhere anywhere tcp dpt:ntp
ACCEPT tcp -- anywhere anywhere tcp dpt:domain
ACCEPT tcp -- anywhere anywhere tcp dpt:shell
ACCEPT tcp -- anywhere anywhere tcp dpt:9987
ACCEPT tcp -- anywhere anywhere tcp dpt:51515
ACCEPT udp -- anywhere anywhere udp dpt:domain
ACCEPT udp -- anywhere anywhere udp dpt:ntp
ACCEPT udp -- anywhere anywhere udp dpt:1793
ACCEPT udp -- anywhere anywhere udp dpt:55558
ACCEPT udp -- anywhere anywhere udp dpt:55585
ACCEPT udp -- anywhere anywhere udp dpt:9987
ACCEPT udp -- anywhere anywhere udp dpt:http-alt
ACCEPT udp -- anywhere anywhere udp dpt:sip
ACCEPT udp -- anywhere anywhere udp dpt:7078
ACCEPT udp -- anywhere anywhere udp dpt:9078
ACCEPT udp -- anywhere anywhere udp dpt:51515
LOG tcp -- anywhere anywhere tcp dpts:1024:65535flags:! FIN,SYN,RST,ACK/SYN limit: avg 3/min burst 5 LOG level info prefix "AIF:Stealth scan? (UNPRIV): "
LOG tcp -- anywhere anywhere tcp dpts:0:1023flags:! FIN,SYN,RST,ACK/SYN limit: avg 3/min burst 5 LOG level info prefix "AIF:Stealth scan? (PRIV): "
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere tcpflags:! FIN,SYN,RST,ACK/SYN
EXT_BROADCAST_CHAIN all -- anywhere 255.255.255.255
EXT_MULTICAST_CHAIN all -- anywhere base-address.mcast.net/4
LOG tcp -- anywhere anywhere tcp dpts:0:1023 limit: avg 6/min burst 2 LOG level info prefix "AIF:PRIV TCP packet: "
LOG udp -- anywhere anywhere udp dpts:0:1023 limit: avg 6/min burst 2 LOG level info prefix "AIF:PRIV UDP packet: "
LOG tcp -- anywhere anywhere tcp dpts:1024:65535 limit: avg 6/min burst 2 LOG level info prefix "AIF:UNPRIV TCP packet: "
LOG udp -- anywhere anywhere udp dpts:1024:65535 limit: avg 6/min burst 2 LOG level info prefix "AIF:UNPRIV UDP packet: "
LOG igmp -- anywhere anywhere limit: avg 1/min burst 5 LOG level info prefix "AIF:IGMP packet: "
POST_INPUT_CHAIN all -- anywhere anywhere
LOG icmp -- anywhere anywhere icmp echo-request limit: avg 3/min burst 1 LOG level info prefix "AIF:ICMP-request: "
LOG icmp -- anywhere anywhere icmp !echo-request limit: avg 12/hour burst 1 LOG level info prefix "AIF:ICMP-other: "
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere
POST_INPUT_DROP_CHAIN udp -- anywhere anywhere
POST_INPUT_DROP_CHAIN igmp -- anywhere anywhere
POST_INPUT_DROP_CHAIN icmp -- anywhere anywhere
LOG all -- anywhere anywhere limit: avg 1/min burst 5 LOG level info prefix "AIF:Other connect: "
POST_INPUT_DROP_CHAIN all -- anywhere anywhere
Chain EXT_MULTICAST_CHAIN (1 references)
target prot opt source destination
LOG tcp -- anywhere anywhere tcp dpts:0:1023 limit: avg 6/min burst 2 LOG level info prefix "AIF:PRIV TCP multicast: "
LOG udp -- anywhere anywhere udp dpts:0:1023 limit: avg 6/min burst 2 LOG level info prefix "AIF:PRIV UDP multicast: "
LOG tcp -- anywhere anywhere tcp dpts:1024:65535 limit: avg 6/min burst 2 LOG level info prefix "AIF:UNPRIV TCP multicast: "
LOG udp -- anywhere anywhere udp dpt:1024 limit: avg 6/min burst 2 LOG level info prefix "AIF:UNPRIV UDP multicast: "
LOG icmp -- anywhere anywhere icmp echo-request limit: avg 3/min burst 1 LOG level info prefix "AIF:ICMP-multicast-request: "
LOG icmp -- anywhere anywhere icmp !echo-request limit: avg 12/hour burst 1 LOG level info prefix "AIF:ICMP-multicast-other: "
DROP all -- anywhere anywhere
Chain EXT_OUTPUT_CHAIN (2 references)
target prot opt source destination
Chain FORWARD_CHAIN (1 references)
target prot opt source destination
Chain HOST_BLOCK_DROP (0 references)
target prot opt source destination
LOG all -- anywhere anywhere limit: avg 1/min burst 1 LOG level info prefix "AIF:Blocked host(s): "
DROP all -- anywhere anywhere
Chain HOST_BLOCK_DST (2 references)
target prot opt source destination
Chain HOST_BLOCK_SRC (2 references)
target prot opt source destination
Chain INET_DMZ_FORWARD_CHAIN (0 references)
target prot opt source destination
Chain INPUT_CHAIN (1 references)
target prot opt source destination
Chain INT_FORWARD_IN_CHAIN (0 references)
target prot opt source destination
Chain INT_FORWARD_OUT_CHAIN (0 references)
target prot opt source destination
Chain INT_INPUT_CHAIN (0 references)
target prot opt source destination
Chain INT_OUTPUT_CHAIN (0 references)
target prot opt source destination
Chain LAN_INET_FORWARD_CHAIN (0 references)
target prot opt source destination
Chain OUTPUT_CHAIN (1 references)
target prot opt source destination
Chain POST_FORWARD_CHAIN (1 references)
target prot opt source destination
Chain POST_INPUT_CHAIN (2 references)
target prot opt source destination
Chain POST_INPUT_DROP_CHAIN (27 references)
target prot opt source destination
DROP all -- anywhere anywhere
Chain POST_OUTPUT_CHAIN (1 references)
target prot opt source destination
Chain RESERVED_NET_CHK (0 references)
target prot opt source destination
Chain SPOOF_CHK (2 references)
target prot opt source destination
RETURN all -- anywhere anywhere
Chain VALID_CHK (3 references)
target prot opt source destination
LOG tcp -- anywhere anywhere tcpflags: FIN,SYN,RST,PSH,ACK,URG/FIN,PSH,URG limit: avg 3/min burst 5 LOG level info prefix "AIF:Stealth XMAS scan: "
LOG tcp -- anywhere anywhere tcpflags: FIN,SYN,RST,PSH,ACK,URG/FIN,SYN,RST,ACK,URG limit: avg 3/min burst 5 LOG level info prefix "AIF:Stealth XMAS-PSH scan: "
LOG tcp -- anywhere anywhere tcpflags: FIN,SYN,RST,PSH,ACK,URG/FIN,SYN,RST,PSH,ACK,URG limit: avg 3/min burst 5 LOG level info prefix "AIF:Stealth XMAS-ALL scan: "
LOG tcp -- anywhere anywhere tcpflags: FIN,SYN,RST,PSH,ACK,URG/FIN limit: avg 3/min burst 5 LOG level info prefix "AIF:Stealth FIN scan: "
LOG tcp -- anywhere anywhere tcpflags: SYN,RST/SYN,RST limit: avg 3/min burst 5 LOG level info prefix "AIF:Stealth SYN/RST scan: "
LOG tcp -- anywhere anywhere tcpflags: FIN,SYN/FIN,SYN limit: avg 3/min burst 5 LOG level info prefix "AIF:Stealth SYN/FIN scan?: "
LOG tcp -- anywhere anywhere tcpflags: FIN,SYN,RST,PSH,ACK,URG/NONE limit: avg 3/min burst 5 LOG level info prefix "AIF:Stealth Null scan: "
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere tcpflags: FIN,SYN,RST,PSH,ACK,URG/FIN,PSH,URG
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere tcpflags: FIN,SYN,RST,PSH,ACK,URG/FIN,SYN,RST,ACK,URG
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere tcpflags: FIN,SYN,RST,PSH,ACK,URG/FIN,SYN,RST,PSH,ACK,URG
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere tcpflags: FIN,SYN,RST,PSH,ACK,URG/FIN
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere tcpflags: SYN,RST/SYN,RST
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere tcpflags: FIN,SYN/FIN,SYN
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere tcpflags: FIN,SYN,RST,PSH,ACK,URG/NONE
LOG tcp -- anywhere anywhere tcp option=64 limit: avg 3/min burst 1 LOG level info prefix "AIF:Bad TCP flag(64): "
LOG tcp -- anywhere anywhere tcp option=128 limit: avg 3/min burst 1 LOG level info prefix "AIF:Bad TCP flag(128): "
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere tcp option=64
POST_INPUT_DROP_CHAIN tcp -- anywhere anywhere tcp option=128
POST_INPUT_DROP_CHAIN all -- anywhere anywhere state INVALID
LOG all -f anywhere anywhere limit: avg 3/min burst 1 LOG level warning prefix "AIF:Fragment packet: "
DROP all -f anywhere anywhere
pland@kubuntu:~$ sudo iptables -L -t nat
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
NAT_PREROUTING_CHAIN all -- anywhere anywhere
POST_NAT_PREROUTING_CHAIN all -- anywhere anywhere
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
NAT_POSTROUTING_CHAIN all -- anywhere anywhere
POST_NAT_POSTROUTING_CHAIN all -- anywhere anywhere
Chain NAT_POSTROUTING_CHAIN (1 references)
target prot opt source destination
Chain NAT_PREROUTING_CHAIN (1 references)
target prot opt source destination
Chain POST_NAT_POSTROUTING_CHAIN (1 references)
target prot opt source destination
Chain POST_NAT_PREROUTING_CHAIN (1 references)
target prot opt source destination