On 8/29/2013 9:01 AM, Thomas Harold wrote:
/etc/shorewall/routestopped
bond0 - - icmp
bond0 - - tcp 22
bond0 - - udp 123
bond0 - - tcp 880
want1 - source icmp
want1 - source tcp 880
wancbl - source icmp
wancbl - source tcp 880
Attached is the "iptables -nv -L" output when shorewall is in stopped mode.
Chain INPUT (policy DROP 2 packets, 396 bytes)
pkts bytes target prot opt in out source destination
12 876 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
0 0 ACCEPT icmp -- bond0 * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT tcp -- bond0 * 0.0.0.0/0 0.0.0.0/0
tcp dpt:22
0 0 ACCEPT udp -- bond0 * 0.0.0.0/0 0.0.0.0/0
udp dpt:123
0 0 ACCEPT tcp -- bond0 * 0.0.0.0/0 0.0.0.0/0
tcp dpt:880
0 0 ACCEPT icmp -- want1 * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT tcp -- want1 * 0.0.0.0/0 0.0.0.0/0
tcp dpt:880
0 0 ACCEPT icmp -- wancbl * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT tcp -- wancbl * 0.0.0.0/0 0.0.0.0/0
tcp dpt:880
0 0 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT udp -- bond0 * 0.0.0.0/0 0.0.0.0/0
udp dpts:67:68
2 690 ACCEPT udp -- wancbl * 0.0.0.0/0 0.0.0.0/0
udp dpts:67:68
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
0 0 ACCEPT icmp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- bond0 want1 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- bond0 want1 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- bond0 wancbl 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- bond0 wancbl 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT tcp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
tcp dpt:22
0 0 ACCEPT tcp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
tcp dpt:22
0 0 ACCEPT tcp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
tcp dpt:22
0 0 ACCEPT tcp -- bond0 want1 0.0.0.0/0 0.0.0.0/0
tcp dpt:22
0 0 ACCEPT tcp -- bond0 want1 0.0.0.0/0 0.0.0.0/0
tcp dpt:22
0 0 ACCEPT tcp -- bond0 wancbl 0.0.0.0/0 0.0.0.0/0
tcp dpt:22
0 0 ACCEPT tcp -- bond0 wancbl 0.0.0.0/0 0.0.0.0/0
tcp dpt:22
0 0 ACCEPT udp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
udp dpt:123
0 0 ACCEPT udp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
udp dpt:123
0 0 ACCEPT udp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
udp dpt:123
0 0 ACCEPT udp -- bond0 want1 0.0.0.0/0 0.0.0.0/0
udp dpt:123
0 0 ACCEPT udp -- bond0 want1 0.0.0.0/0 0.0.0.0/0
udp dpt:123
0 0 ACCEPT udp -- bond0 wancbl 0.0.0.0/0 0.0.0.0/0
udp dpt:123
0 0 ACCEPT udp -- bond0 wancbl 0.0.0.0/0 0.0.0.0/0
udp dpt:123
0 0 ACCEPT tcp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
tcp dpt:880
0 0 ACCEPT tcp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
tcp dpt:880
0 0 ACCEPT tcp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
tcp dpt:880
0 0 ACCEPT tcp -- bond0 want1 0.0.0.0/0 0.0.0.0/0
tcp dpt:880
0 0 ACCEPT tcp -- bond0 want1 0.0.0.0/0 0.0.0.0/0
tcp dpt:880
0 0 ACCEPT tcp -- bond0 wancbl 0.0.0.0/0 0.0.0.0/0
tcp dpt:880
0 0 ACCEPT tcp -- bond0 wancbl 0.0.0.0/0 0.0.0.0/0
tcp dpt:880
0 0 ACCEPT icmp -- want1 * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT tcp -- want1 * 0.0.0.0/0 0.0.0.0/0
tcp dpt:880
0 0 ACCEPT icmp -- wancbl * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT tcp -- wancbl * 0.0.0.0/0 0.0.0.0/0
tcp dpt:880
0 0 ACCEPT udp -- bond0 bond0 0.0.0.0/0 0.0.0.0/0
udp dpts:67:68
0 0 ACCEPT udp -- wancbl wancbl 0.0.0.0/0 0.0.0.0/0
udp dpts:67:68
Chain OUTPUT (policy ACCEPT 11 packets, 1020 bytes)
pkts bytes target prot opt in out source destination------------------------------------------------------------------------------
Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more!
Discover the easy way to master current and previous Microsoft technologies
and advance your career. Get an incredible 1,500+ hours of step-by-step
tutorial videos with LearnDevNow. Subscribe today and save!
http://pubads.g.doubleclick.net/gampad/clk?id=58040911&iu=/4140/ostg.clktrk
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users
