Hallo Jonny,
wenn ich mir die Ausgabe von iptables -L etwas genauer anschaue, ändert
sich nix, wenn ein Client per DHCP eine IPAdresse erhält oder wenn sich
jemand beim Coovachilli anmeldet.
Ich hab mal die Ausgaben von iptables drangehängt.
Gruß,
Mathias
Chain INPUT (policy ACCEPT)
target prot opt source destination
DROP all -- anywhere anywhere
ACCEPT icmp -- anywhere 192.168.0.1
ACCEPT udp -- anywhere 192.168.0.1 udp dpt:domain
ACCEPT udp -- anywhere 192.168.0.1 udp
dpts:bootps:bootpc
ACCEPT udp -- anywhere 255.255.255.255 udp
dpts:bootps:bootpc
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:http-alt
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:https
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:http
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:4990
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:3990
DROP all -- anywhere 192.168.0.1
ACCEPT all -- anywhere anywhere state
RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:sshflags:
FIN,SYN,RST,ACK/SYN
REJECT all -- anywhere anywhere reject-with
icmp-port-unreachable
DROP all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere tcp
dpt:httpflags: FIN,SYN,RST,ACK/SYN
ACCEPT tcp -- anywhere anywhere tcp
dpt:httpsflags: FIN,SYN,RST,ACK/SYN
ACCEPT tcp -- anywhere anywhere tcp
dpt:3990flags: FIN,SYN,RST,ACK/SYN
ACCEPT all -- anywhere anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere
DROP all -- anywhere anywhere
TCPMSS tcp -- anywhere anywhere tcpflags:
SYN,RST/SYN TCPMSS clamp to PMTU
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain INPUT (policy ACCEPT)
target prot opt source destination
DROP all -- anywhere anywhere
ACCEPT icmp -- anywhere 192.168.0.1
ACCEPT udp -- anywhere 192.168.0.1 udp dpt:domain
ACCEPT udp -- anywhere 192.168.0.1 udp
dpts:bootps:bootpc
ACCEPT udp -- anywhere 255.255.255.255 udp
dpts:bootps:bootpc
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:http-alt
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:https
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:http
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:4990
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:3990
DROP all -- anywhere 192.168.0.1
ACCEPT all -- anywhere anywhere state
RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:sshflags:
FIN,SYN,RST,ACK/SYN
REJECT all -- anywhere anywhere reject-with
icmp-port-unreachable
DROP all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere tcp
dpt:httpflags: FIN,SYN,RST,ACK/SYN
ACCEPT tcp -- anywhere anywhere tcp
dpt:httpsflags: FIN,SYN,RST,ACK/SYN
ACCEPT tcp -- anywhere anywhere tcp
dpt:3990flags: FIN,SYN,RST,ACK/SYN
ACCEPT all -- anywhere anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere
DROP all -- anywhere anywhere
TCPMSS tcp -- anywhere anywhere tcpflags:
SYN,RST/SYN TCPMSS clamp to PMTU
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain INPUT (policy ACCEPT)
target prot opt source destination
DROP all -- anywhere anywhere
ACCEPT icmp -- anywhere 192.168.0.1
ACCEPT udp -- anywhere 192.168.0.1 udp dpt:domain
ACCEPT udp -- anywhere 192.168.0.1 udp
dpts:bootps:bootpc
ACCEPT udp -- anywhere 255.255.255.255 udp
dpts:bootps:bootpc
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:http-alt
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:https
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:http
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:4990
ACCEPT tcp -- anywhere 192.168.0.1 tcp dpt:3990
DROP all -- anywhere 192.168.0.1
ACCEPT all -- anywhere anywhere state
RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:sshflags:
FIN,SYN,RST,ACK/SYN
REJECT all -- anywhere anywhere reject-with
icmp-port-unreachable
DROP all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere tcp
dpt:httpflags: FIN,SYN,RST,ACK/SYN
ACCEPT tcp -- anywhere anywhere tcp
dpt:httpsflags: FIN,SYN,RST,ACK/SYN
ACCEPT tcp -- anywhere anywhere tcp
dpt:3990flags: FIN,SYN,RST,ACK/SYN
ACCEPT all -- anywhere anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere
DROP all -- anywhere anywhere
TCPMSS tcp -- anywhere anywhere tcpflags:
SYN,RST/SYN TCPMSS clamp to PMTU
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
_______________________________________________
linuxmuster-user mailing list
linuxmuster-user@lists.linuxmuster.net
https://mail.lehrerpost.de/mailman/listinfo/linuxmuster-user