User talk:Thestinger

From ArchWiki
Revision as of 15:00, 12 March 2010 by Thestinger (talk | contribs) (stateful firewall template)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
  • filter
INPUT DROP [0:0]
FORWARD DROP [0:0]
OUTPUT ACCEPT [0:0]
TCP - [0:0]
UDP - [0:0]
ICMP - [0:0]

-A INPUT -i lo -j ACCEPT -A INPUT -m state --state INVALID -j DROP -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -p udp -m state --state NEW -j UDP -A INPUT -p tcp --syn -m state --state NEW -j TCP -A INPUT -p icmp -m state --state NEW -j ICMP -A INPUT -j REJECT --reject-with icmp-proto-unreachable

-A UDP -p udp --dport 1720 -j ACCEPT -A UDP -p udp -j REJECT --reject-with icmp-port-unreachable

-A TCP -p tcp --dport 1720 -j ACCEPT -A TCP -p tcp -j REJECT --reject-with tcp-reset

-A ICMP -p icmp --icmp-type 8 -j ACCEPT -A ICMP -j DROP

COMMIT