> I cannot advise you without seeing the output of 'shorewall dump'.
Attached.
Vernon
Shorewall 4.5.21.10 Dump at mss-rtr - Thu Oct 16 14:52:45 CDT 2014
Shorewall is running
State:Started (Wed Oct 15 13:44:10 CDT 2014) from /etc/shorewall/
/var/lib/shorewall/firewall was compiled by Shorewall version 4.5.21.10
Counters reset Wed Oct 15 13:44:10 CDT 2014
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
73234 12M enp2s0_in all -- enp2s0 * 0.0.0.0/0 0.0.0.0/0
88337 36M loc2fw all -- enp3s7 * 0.0.0.0/0 0.0.0.0/0
policy match dir in pol none
9552 1564K ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
33 4042 Reject all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix "Shorewall:INPUT:REJECT:"
0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0
[goto]
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
7723K 9927M enp2s0_fwd all -- enp2s0 * 0.0.0.0/0 0.0.0.0/0
4767K 577M loc_frwd all -- enp3s7 * 0.0.0.0/0 0.0.0.0/0
policy match dir in pol none
37 2956 Reject all -- * * 0.0.0.0/0 0.0.0.0/0
11 568 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix "Shorewall:FORWARD:REJECT:"
11 568 reject all -- * * 0.0.0.0/0 0.0.0.0/0
[goto]
Chain OUTPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
84418 55M enp2s0_out all -- * enp2s0 0.0.0.0/0 0.0.0.0/0
49613 6544K fw2loc all -- * enp3s7 0.0.0.0/0 0.0.0.0/0
policy match dir out pol none
9552 1564K ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0
36 3432 Drop all -- * * 0.0.0.0/0 0.0.0.0/0
25 2992 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix "Shorewall:OUTPUT:DROP:"
25 2992 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain Broadcast (2 references)
pkts bytes target prot opt in out source destination
33 4042 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
ADDRTYPE match dst-type BROADCAST
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
ADDRTYPE match dst-type MULTICAST
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
ADDRTYPE match dst-type ANYCAST
Chain Drop (3 references)
pkts bytes target prot opt in out source destination
36 3432 all -- * * 0.0.0.0/0 0.0.0.0/0
36 3432 Broadcast all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmptype 3 code 4 /* Needed ICMP types */
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmptype 11 /* Needed ICMP types */
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate INVALID
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
multiport dports 135,445 /* SMB */
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpts:137:139 /* SMB */
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp spt:137 dpts:1024:65535 /* SMB */
0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0
multiport dports 135,139,445 /* SMB */
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:1900 /* UPnP */
11 440 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp flags:!0x17/0x02
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp spt:53 /* Late DNS Replies */
Chain Reject (3 references)
pkts bytes target prot opt in out source destination
2819 168K all -- * * 0.0.0.0/0 0.0.0.0/0
2819 168K Broadcast all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmptype 3 code 4 /* Needed ICMP types */
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmptype 11 /* Needed ICMP types */
1408 62954 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate INVALID
0 0 reject udp -- * * 0.0.0.0/0 0.0.0.0/0
multiport dports 135,445 /* SMB */
26 2388 reject udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpts:137:139 /* SMB */
0 0 reject udp -- * * 0.0.0.0/0 0.0.0.0/0
udp spt:137 dpts:1024:65535 /* SMB */
0 0 reject tcp -- * * 0.0.0.0/0 0.0.0.0/0
multiport dports 135,139,445 /* SMB */
12 1439 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:1900 /* UPnP */
145 23950 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp flags:!0x17/0x02
223 18299 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp spt:53 /* Late DNS Replies */
Chain dynamic (4 references)
pkts bytes target prot opt in out source destination
Chain enp2s0_fwd (1 references)
pkts bytes target prot opt in out source destination
2308 181K dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate INVALID,NEW,UNTRACKED
0 0 smurfs all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate INVALID,NEW,UNTRACKED policy match dir in pol none
7684K 9894M tcpflags tcp -- * * 0.0.0.0/0 0.0.0.0/0
policy match dir in pol none
13605 2150K vpn_frwd all -- * * 0.0.0.0/0 0.0.0.0/0
[goto] policy match dir in pol ipsec
7709K 9925M net_frwd all -- * * 0.0.0.0/0 0.0.0.0/0
policy match dir in pol none
Chain enp2s0_in (1 references)
pkts bytes target prot opt in out source destination
4158 247K dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate INVALID,NEW,UNTRACKED
3850 220K smurfs all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate INVALID,NEW,UNTRACKED policy match dir in pol none
33982 2833K tcpflags tcp -- * * 0.0.0.0/0 0.0.0.0/0
policy match dir in pol none
72743 12M net2fw all -- * * 0.0.0.0/0 0.0.0.0/0
policy match dir in pol none
491 40801 vpn2fw all -- * * 0.0.0.0/0 0.0.0.0/0
policy match dir in pol ipsec
Chain enp2s0_out (1 references)
pkts bytes target prot opt in out source destination
83700 55M fw2net all -- * * 0.0.0.0/0 0.0.0.0/0
policy match dir out pol none
718 57260 fw2vpn all -- * * 0.0.0.0/0 0.0.0.0/0
policy match dir out pol ipsec
Chain fw2loc (1 references)
pkts bytes target prot opt in out source destination
48314 6406K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:500 /* IPsecnat */
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:4500 /* IPsecnat */
0 0 ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0
/* IPsecnat */
1299 138K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain fw2net (1 references)
pkts bytes target prot opt in out source destination
62739 53M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
5 920 ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0
157 18840 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:500 ctstate NEW,UNTRACKED
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:500 /* IPsecnat */
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:4500 /* IPsecnat */
0 0 ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0
/* IPsecnat */
20799 1610K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain fw2vpn (1 references)
pkts bytes target prot opt in out source destination
615 45104 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:500 ctstate NEW,UNTRACKED
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:500 /* IPsecnat */
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:4500 /* IPsecnat */
0 0 ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0
/* IPsecnat */
103 12156 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain loc2fw (1 references)
pkts bytes target prot opt in out source destination
45029 4833K dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate INVALID,NEW,UNTRACKED
45029 4833K smurfs all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate INVALID,NEW,UNTRACKED policy match dir in pol none
42988 31M tcpflags tcp -- * * 0.0.0.0/0 0.0.0.0/0
policy match dir in pol none
43308 31M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmptype 8 /* Ping */
2 1112 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:500 /* IPsecnat */
1 1956 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:4500 /* IPsecnat */
81 11976 ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0
/* IPsecnat */
44945 4818K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain loc2net (1 references)
pkts bytes target prot opt in out source destination
4649K 560M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
108K 6500K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain loc2vpn (1 references)
pkts bytes target prot opt in out source destination
10454 10M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
168 18989 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain loc_frwd (1 references)
pkts bytes target prot opt in out source destination
0 0 sfilter1 all -- * enp3s7 0.0.0.0/0 0.0.0.0/0
policy match dir in pol none
108K 6519K dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate INVALID,NEW,UNTRACKED
108K 6519K smurfs all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate INVALID,NEW,UNTRACKED policy match dir in pol none
4723K 572M tcpflags tcp -- * * 0.0.0.0/0 0.0.0.0/0
policy match dir in pol none
4756K 566M loc2net all -- * enp2s0 0.0.0.0/0 0.0.0.0/0
policy match dir out pol none
10622 10M loc2vpn all -- * enp2s0 0.0.0.0/0 0.0.0.0/0
policy match dir out pol ipsec
Chain logdrop (0 references)
pkts bytes target prot opt in out source destination
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain logflags (5 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 4 level 6 prefix "Shorewall:logflags:DROP:"
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain logreject (0 references)
pkts bytes target prot opt in out source destination
0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0
Chain net2fw (1 references)
pkts bytes target prot opt in out source destination
68893 11M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
34 5040 ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0
32 6048 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:500 ctstate NEW,UNTRACKED
42 2686 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:80 /* Web */
11 974 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:443 /* Web */
1 52 ACCEPT tcp -- * * 173.14.110.233 0.0.0.0/0
tcp dpt:22 /* SSH */
9 452 ~log0 tcp -- * * 0.0.0.0/0 0.0.0.0/0
[goto] tcp dpt:8267 /* RdpProxy */
3 156 ~log0 tcp -- * * 0.0.0.0/0 0.0.0.0/0
[goto] tcp dpts:12100:12200 /* RdpProxy */
967 38644 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmptype 8 /* Ping */
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:500 /* IPsecnat */
2 4552 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:4500 /* IPsecnat */
0 0 ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0
/* IPsecnat */
2749 161K Reject all -- * * 0.0.0.0/0 0.0.0.0/0
961 54354 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix "Shorewall:net2fw:REJECT:"
961 54354 reject all -- * * 0.0.0.0/0 0.0.0.0/0
[goto]
Chain net2loc (1 references)
pkts bytes target prot opt in out source destination
7702K 9915M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
0 0 Drop all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain net2vpn (1 references)
pkts bytes target prot opt in out source destination
7494 10M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
0 0 Drop all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain net_frwd (1 references)
pkts bytes target prot opt in out source destination
7702K 9915M net2loc all -- * enp3s7 0.0.0.0/0 0.0.0.0/0
policy match dir out pol none
7494 10M net2vpn all -- * enp2s0 0.0.0.0/0 0.0.0.0/0
policy match dir out pol ipsec
Chain reject (8 references)
pkts bytes target prot opt in out source destination
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
ADDRTYPE match src-type BROADCAST
0 0 DROP all -- * * 224.0.0.0/4 0.0.0.0/0
0 0 DROP 2 -- * * 0.0.0.0/0 0.0.0.0/0
803 38868 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0
reject-with tcp-reset
195 18442 REJECT udp -- * * 0.0.0.0/0 0.0.0.0/0
reject-with icmp-port-unreachable
0 0 REJECT icmp -- * * 0.0.0.0/0 0.0.0.0/0
reject-with icmp-host-unreachable
0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0
reject-with icmp-host-prohibited
Chain sfilter1 (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
policy match dir out pol ipsec
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix "Shorewall:sfilter1:DROP:"
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain shorewall (0 references)
pkts bytes target prot opt in out source destination
0 0 all -- * * 0.0.0.0/0 0.0.0.0/0
recent: SET name: %CURRENTTIME side: source mask: 255.255.255.255
Chain smurflog (2 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix "Shorewall:smurfs:DROP:"
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain smurfs (4 references)
pkts bytes target prot opt in out source destination
67 22393 RETURN all -- * * 0.0.0.0 0.0.0.0/0
0 0 smurflog all -- * * 0.0.0.0/0 0.0.0.0/0
[goto] ADDRTYPE match src-type BROADCAST
0 0 smurflog all -- * * 224.0.0.0/4 0.0.0.0/0
[goto]
Chain tcpflags (4 references)
pkts bytes target prot opt in out source destination
0 0 logflags tcp -- * * 0.0.0.0/0 0.0.0.0/0
[goto] tcp flags:0x3F/0x29
0 0 logflags tcp -- * * 0.0.0.0/0 0.0.0.0/0
[goto] tcp flags:0x3F/0x00
0 0 logflags tcp -- * * 0.0.0.0/0 0.0.0.0/0
[goto] tcp flags:0x06/0x06
0 0 logflags tcp -- * * 0.0.0.0/0 0.0.0.0/0
[goto] tcp flags:0x03/0x03
0 0 logflags tcp -- * * 0.0.0.0/0 0.0.0.0/0
[goto] tcp spt:0 flags:0x17/0x02
Chain vpn2fw (1 references)
pkts bytes target prot opt in out source destination
183 13661 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:500 ctstate NEW,UNTRACKED
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmptype 8 /* Ping */
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:500 /* IPsecnat */
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:4500 /* IPsecnat */
0 0 ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0
/* IPsecnat */
308 27140 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain vpn2loc (1 references)
pkts bytes target prot opt in out source destination
7325 1727K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
2259 178K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain vpn2net (1 references)
pkts bytes target prot opt in out source destination
3972 242K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
ctstate RELATED,ESTABLISHED
49 2548 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain vpn_frwd (1 references)
pkts bytes target prot opt in out source destination
4021 245K vpn2net all -- * enp2s0 0.0.0.0/0 0.0.0.0/0
policy match dir out pol none
9584 1905K vpn2loc all -- * enp3s7 0.0.0.0/0 0.0.0.0/0
policy match dir out pol none
Chain ~log0 (2 references)
pkts bytes target prot opt in out source destination
12 608 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
/* RdpProxy */ LOG flags 0 level 6 prefix "Shorewall:net2fw:ACCEPT:"
12 608 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
/* RdpProxy */
Log (/var/log/messages)
Oct 16 14:08:06 net2fw:REJECT:IN=enp2s0 OUT= SRC=63.71.10.6 DST=50.240.105.225
LEN=32 TOS=0x00 PREC=0x20 TTL=1 ID=524 PROTO=UDP SPT=10209 DPT=33437 LEN=12
Oct 16 14:17:01 net2fw:REJECT:IN=enp2s0 OUT= SRC=212.7.209.11
DST=50.240.105.225 LEN=48 TOS=0x00 PREC=0x20 TTL=114 ID=29615 PROTO=TCP
SPT=57590 DPT=5631 WINDOW=65535 RES=0x00 SYN URGP=0
Oct 16 14:17:18 net2fw:REJECT:IN=enp2s0 OUT= SRC=105.156.83.38
DST=50.240.105.225 LEN=52 TOS=0x00 PREC=0x20 TTL=49 ID=1684 DF PROTO=TCP
SPT=36512 DPT=5900 WINDOW=65535 RES=0x00 SYN URGP=0
Oct 16 14:17:19 net2fw:REJECT:IN=enp2s0 OUT= SRC=105.156.83.38
DST=50.240.105.225 LEN=52 TOS=0x00 PREC=0x20 TTL=49 ID=1788 DF PROTO=TCP
SPT=36512 DPT=5900 WINDOW=65535 RES=0x00 SYN URGP=0
Oct 16 14:17:19 net2fw:REJECT:IN=enp2s0 OUT= SRC=105.156.83.38
DST=50.240.105.225 LEN=52 TOS=0x00 PREC=0x20 TTL=49 ID=1920 DF PROTO=TCP
SPT=36512 DPT=5900 WINDOW=65535 RES=0x00 SYN URGP=0
Oct 16 14:29:13 net2fw:REJECT:IN=enp2s0 OUT= SRC=201.209.66.114
DST=50.240.105.225 LEN=48 TOS=0x00 PREC=0x20 TTL=112 ID=31414 DF PROTO=TCP
SPT=2180 DPT=5900 WINDOW=65535 RES=0x00 SYN URGP=0
Oct 16 14:29:14 net2fw:REJECT:IN=enp2s0 OUT= SRC=201.209.66.114
DST=50.240.105.225 LEN=48 TOS=0x00 PREC=0x20 TTL=112 ID=31438 DF PROTO=TCP
SPT=2180 DPT=5900 WINDOW=65535 RES=0x00 SYN URGP=0
Oct 16 14:29:15 net2fw:REJECT:IN=enp2s0 OUT= SRC=201.209.66.114
DST=50.240.105.225 LEN=48 TOS=0x00 PREC=0x20 TTL=112 ID=31469 DF PROTO=TCP
SPT=2180 DPT=5900 WINDOW=65535 RES=0x00 SYN URGP=0
Oct 16 14:32:09 net2fw:REJECT:IN=enp2s0 OUT= SRC=162.212.181.242
DST=50.240.105.225 LEN=84 TOS=0x00 PREC=0x20 TTL=116 ID=32246 PROTO=UDP
SPT=48826 DPT=53 LEN=64
Oct 16 14:35:38 net2fw:REJECT:IN=enp2s0 OUT= SRC=185.19.216.227
DST=50.240.105.225 LEN=40 TOS=0x00 PREC=0x20 TTL=106 ID=256 PROTO=TCP SPT=6000
DPT=799 WINDOW=16384 RES=0x00 SYN URGP=0
Oct 16 14:38:40 net2fw:REJECT:IN=enp2s0 OUT= SRC=23.94.245.138
DST=50.240.105.225 LEN=220 TOS=0x00 PREC=0x20 TTL=237 ID=54321 PROTO=UDP
SPT=52939 DPT=123 LEN=200
Oct 16 14:41:35 net2fw:REJECT:IN=enp2s0 OUT= SRC=82.221.105.7
DST=50.240.105.225 LEN=40 TOS=0x00 PREC=0x20 TTL=112 ID=34211 PROTO=TCP
SPT=25875 DPT=1723 WINDOW=44471 RES=0x00 SYN URGP=0
Oct 16 14:43:38 net2fw:REJECT:IN=enp2s0 OUT= SRC=37.115.124.40
DST=50.240.105.225 LEN=48 TOS=0x00 PREC=0x20 TTL=109 ID=46617 DF PROTO=TCP
SPT=4906 DPT=5900 WINDOW=65535 RES=0x00 SYN URGP=0
Oct 16 14:43:39 net2fw:REJECT:IN=enp2s0 OUT= SRC=37.115.124.40
DST=50.240.105.225 LEN=48 TOS=0x00 PREC=0x20 TTL=109 ID=46652 DF PROTO=TCP
SPT=4906 DPT=5900 WINDOW=65535 RES=0x00 SYN URGP=0
Oct 16 14:43:39 net2fw:REJECT:IN=enp2s0 OUT= SRC=37.115.124.40
DST=50.240.105.225 LEN=48 TOS=0x00 PREC=0x20 TTL=109 ID=46723 DF PROTO=TCP
SPT=4906 DPT=5900 WINDOW=65535 RES=0x00 SYN URGP=0
Oct 16 14:44:32 net2fw:REJECT:IN=enp2s0 OUT= SRC=218.77.79.43
DST=50.240.105.225 LEN=40 TOS=0x00 PREC=0x20 TTL=237 ID=54321 PROTO=TCP
SPT=59724 DPT=25 WINDOW=65535 RES=0x00 SYN URGP=0
Oct 16 14:49:55 net2fw:REJECT:IN=enp2s0 OUT= SRC=122.225.109.111
DST=50.240.105.225 LEN=40 TOS=0x00 PREC=0x20 TTL=99 ID=256 PROTO=TCP SPT=6000
DPT=22 WINDOW=16384 RES=0x00 SYN URGP=0
Oct 16 14:52:30 net2fw:ACCEPT:IN=enp2s0 OUT= SRC=208.118.199.112
DST=50.240.105.225 LEN=52 TOS=0x00 PREC=0x20 TTL=117 ID=12249 DF PROTO=TCP
SPT=51078 DPT=8267 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 16 14:52:31 net2fw:ACCEPT:IN=enp2s0 OUT= SRC=208.118.199.112
DST=50.240.105.225 LEN=52 TOS=0x00 PREC=0x20 TTL=117 ID=12257 DF PROTO=TCP
SPT=51079 DPT=8267 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 16 14:52:31 net2fw:ACCEPT:IN=enp2s0 OUT= SRC=208.118.199.112
DST=50.240.105.225 LEN=52 TOS=0x00 PREC=0x20 TTL=117 ID=12258 DF PROTO=TCP
SPT=51080 DPT=8267 WINDOW=8192 RES=0x00 SYN URGP=0
NAT Table
Chain PREROUTING (policy ACCEPT 88023 packets, 6259K bytes)
pkts bytes target prot opt in out source destination
Chain INPUT (policy ACCEPT 21126 packets, 2473K bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 21910 packets, 1712K bytes)
pkts bytes target prot opt in out source destination
Chain POSTROUTING (policy ACCEPT 24408 packets, 1856K bytes)
pkts bytes target prot opt in out source destination
85587 5244K enp2s0_masq all -- * enp2s0 0.0.0.0/0 0.0.0.0/0
Chain enp2s0_masq (1 references)
pkts bytes target prot opt in out source destination
63618 3556K MASQUERADE all -- * * 192.168.1.0/24
!192.168.5.0/24 policy match dir out pol none
Mangle Table
Chain PREROUTING (policy ACCEPT 13M packets, 11G bytes)
pkts bytes target prot opt in out source destination
13M 11G tcpre all -- * * 0.0.0.0/0 0.0.0.0/0
Chain INPUT (policy ACCEPT 171K packets, 49M bytes)
pkts bytes target prot opt in out source destination
171K 49M tcin all -- * * 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy ACCEPT 12M packets, 11G bytes)
pkts bytes target prot opt in out source destination
12M 11G MARK all -- * * 0.0.0.0/0 0.0.0.0/0
MARK and 0xffffff00
12M 11G tcfor all -- * * 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 144K packets, 63M bytes)
pkts bytes target prot opt in out source destination
144K 63M tcout all -- * * 0.0.0.0/0 0.0.0.0/0
Chain POSTROUTING (policy ACCEPT 13M packets, 11G bytes)
pkts bytes target prot opt in out source destination
13M 11G tcpost all -- * * 0.0.0.0/0 0.0.0.0/0
Chain tcfor (1 references)
pkts bytes target prot opt in out source destination
Chain tcin (1 references)
pkts bytes target prot opt in out source destination
Chain tcout (1 references)
pkts bytes target prot opt in out source destination
Chain tcpost (1 references)
pkts bytes target prot opt in out source destination
Chain tcpre (1 references)
pkts bytes target prot opt in out source destination
Raw Table
Chain PREROUTING (policy ACCEPT 13M packets, 11G bytes)
pkts bytes target prot opt in out source destination
0 0 CT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:10080 CT helper amanda
686 31752 CT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:21 CT helper ftp
1 97 CT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:1719 CT helper RAS
12 7072 CT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:1720 CT helper Q.931
0 0 CT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:6667 CT helper irc
21912 1727K CT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:137 CT helper netbios-ns
32 5606 CT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:1723 CT helper pptp
0 0 CT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:6566 CT helper sane
15 6562 CT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:5060 CT helper sip
11538 1223K CT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:161 CT helper snmp
0 0 CT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:69 CT helper tftp
Chain OUTPUT (policy ACCEPT 144K packets, 63M bytes)
pkts bytes target prot opt in out source destination
2 811 CT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:10080 CT helper amanda
0 0 CT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:21 CT helper ftp
0 0 CT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:1719 CT helper RAS
0 0 CT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:1720 CT helper Q.931
0 0 CT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:6667 CT helper irc
0 0 CT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:137 CT helper netbios-ns
0 0 CT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:1723 CT helper pptp
0 0 CT tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:6566 CT helper sane
0 0 CT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:5060 CT helper sip
0 0 CT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:161 CT helper snmp
0 0 CT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:69 CT helper tftp
Conntrack Table (237 out of 65536)
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.113 sport=59596
dport=443 src=74.125.137.113 dst=50.240.105.225 sport=443 dport=59596 [ASSURED]
mark=0 secctx=null use=2
tcp 6 53 CLOSE_WAIT src=192.168.1.167 dst=173.255.227.17 sport=53021
dport=80 src=173.255.227.17 dst=50.240.105.225 sport=80 dport=53021 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431988 ESTABLISHED src=192.168.1.167 dst=74.125.137.113 sport=53032
dport=80 src=74.125.137.113 dst=50.240.105.225 sport=80 dport=53032 [ASSURED]
mark=0 secctx=null use=2
tcp 6 71 TIME_WAIT src=192.168.1.157 dst=74.125.196.109 sport=52145
dport=995 src=74.125.196.109 dst=50.240.105.225 sport=995 dport=52145 [ASSURED]
mark=0 secctx=null use=2
udp 17 18 src=50.240.105.225 dst=208.78.70.4 sport=59967 dport=53
src=208.78.70.4 dst=50.240.105.225 sport=53 dport=59967 mark=0 secctx=null use=2
udp 17 18 src=192.168.1.50 dst=192.168.1.254 sport=18762 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=18762 mark=0 secctx=null use=2
tcp 6 89 TIME_WAIT src=192.168.1.156 dst=74.125.196.109 sport=51127
dport=995 src=74.125.196.109 dst=50.240.105.225 sport=995 dport=51127 [ASSURED]
mark=0 secctx=null use=2
tcp 6 58 CLOSE_WAIT src=192.168.1.167 dst=199.27.76.130 sport=53030
dport=80 src=199.27.76.130 dst=50.240.105.225 sport=80 dport=53030 [ASSURED]
mark=0 secctx=null use=2
udp 17 19 src=192.168.1.50 dst=192.168.1.254 sport=19135 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=19135 mark=0 secctx=null use=2
tcp 6 60 TIME_WAIT src=192.168.1.16 dst=216.52.184.196 sport=50580
dport=443 src=216.52.184.196 dst=50.240.105.225 sport=443 dport=50580 [ASSURED]
mark=0 secctx=null use=2
tcp 6 9 SYN_SENT src=192.168.1.150 dst=192.168.16.150 sport=51619
dport=9100 [UNREPLIED] src=192.168.16.150 dst=50.240.105.225 sport=9100
dport=51619 mark=0 secctx=null use=2
tcp 6 53 CLOSE_WAIT src=192.168.1.167 dst=173.255.227.17 sport=53023
dport=80 src=173.255.227.17 dst=50.240.105.225 sport=80 dport=53023 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431967 ESTABLISHED src=192.168.1.61 dst=209.104.252.119 sport=2940
dport=5007 src=209.104.252.119 dst=50.240.105.225 sport=5007 dport=2940
[ASSURED] mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.101 sport=59616
dport=443 src=74.125.137.101 dst=50.240.105.225 sport=443 dport=59616 [ASSURED]
mark=0 secctx=null use=2
tcp 6 331399 ESTABLISHED src=192.168.1.165 dst=192.168.1.50 sport=60896
dport=445 src=192.168.1.50 dst=192.168.1.165 sport=445 dport=60896 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431985 ESTABLISHED src=208.118.199.112 dst=50.240.105.225
sport=51080 dport=8267 src=50.240.105.225 dst=208.118.199.112 sport=8267
dport=51080 [ASSURED] mark=0 secctx=null use=2
tcp 6 53 CLOSE_WAIT src=192.168.1.167 dst=173.255.227.17 sport=53022
dport=80 src=173.255.227.17 dst=50.240.105.225 sport=80 dport=53022 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431985 ESTABLISHED src=192.168.1.132 dst=108.160.162.101 sport=63145
dport=80 src=108.160.162.101 dst=50.240.105.225 sport=80 dport=63145 [ASSURED]
mark=0 secctx=null use=2
udp 17 28 src=192.168.1.158 dst=192.168.1.255 sport=137 dport=137
[UNREPLIED] src=192.168.1.255 dst=192.168.1.158 sport=137 dport=137 mark=0
secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.95 sport=59595
dport=443 src=74.125.137.95 dst=50.240.105.225 sport=443 dport=59595 [ASSURED]
mark=0 secctx=null use=2
tcp 6 355294 ESTABLISHED src=192.168.1.154 dst=74.125.137.108 sport=65052
dport=993 src=74.125.137.108 dst=50.240.105.225 sport=993 dport=65052 [ASSURED]
mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=68.180.131.16 sport=16527 dport=53
src=68.180.131.16 dst=50.240.105.225 sport=53 dport=16527 mark=0 secctx=null
use=2
udp 17 19 src=50.240.105.225 dst=208.76.45.53 sport=19954 dport=53
src=208.76.45.53 dst=50.240.105.225 sport=53 dport=19954 mark=0 secctx=null
use=2
udp 17 19 src=50.240.105.225 dst=68.180.131.16 sport=19535 dport=53
src=68.180.131.16 dst=50.240.105.225 sport=53 dport=19535 mark=0 secctx=null
use=2
udp 17 17 src=50.240.105.225 dst=204.160.105.155 sport=21097 dport=53
src=204.160.105.155 dst=50.240.105.225 sport=53 dport=21097 mark=0 secctx=null
use=2
tcp 6 103 TIME_WAIT src=192.168.1.132 dst=108.160.162.101 sport=63144
dport=80 src=108.160.162.101 dst=50.240.105.225 sport=80 dport=63144 [ASSURED]
mark=0 secctx=null use=2
udp 17 17 src=192.168.1.50 dst=192.168.1.254 sport=8059 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=8059 mark=0 secctx=null use=2
tcp 6 107 TIME_WAIT src=192.168.1.167 dst=74.125.137.94 sport=53001
dport=443 src=74.125.137.94 dst=50.240.105.225 sport=443 dport=53001 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431950 ESTABLISHED src=192.168.1.67 dst=209.104.252.119 sport=1544
dport=5007 src=209.104.252.119 dst=50.240.105.225 sport=5007 dport=1544
[ASSURED] mark=0 secctx=null use=2
tcp 6 107 TIME_WAIT src=192.168.1.167 dst=74.125.137.106 sport=52999
dport=443 src=74.125.137.106 dst=50.240.105.225 sport=443 dport=52999 [ASSURED]
mark=0 secctx=null use=2
tcp 6 4 CLOSE src=192.168.1.10 dst=64.74.106.230 sport=53124 dport=443
src=64.74.106.230 dst=50.240.105.225 sport=443 dport=53124 [ASSURED] mark=0
secctx=null use=2
udp 17 19 src=50.240.105.225 dst=156.154.68.196 sport=38606 dport=53
src=156.154.68.196 dst=50.240.105.225 sport=53 dport=38606 mark=0 secctx=null
use=2
tcp 6 23 TIME_WAIT src=192.168.1.132 dst=108.160.162.101 sport=63141
dport=80 src=108.160.162.101 dst=50.240.105.225 sport=80 dport=63141 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431998 ESTABLISHED src=192.168.1.16 dst=216.52.184.196 sport=50579
dport=443 src=216.52.184.196 dst=50.240.105.225 sport=443 dport=50579 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431989 ESTABLISHED src=192.168.1.167 dst=72.30.202.150 sport=53047
dport=80 src=72.30.202.150 dst=50.240.105.225 sport=80 dport=53047 [ASSURED]
mark=0 secctx=null use=2
udp 17 136 src=50.240.105.225 dst=75.137.32.198 sport=500 dport=500
src=75.137.32.198 dst=50.240.105.225 sport=500 dport=500 [ASSURED] mark=0
secctx=null use=2
tcp 6 92 SYN_SENT src=192.168.1.150 dst=192.168.16.150 sport=51627
dport=9100 [UNREPLIED] src=192.168.16.150 dst=50.240.105.225 sport=9100
dport=51627 mark=0 secctx=null use=2
tcp 6 59 TIME_WAIT src=192.168.1.132 dst=108.160.162.101 sport=63142
dport=80 src=108.160.162.101 dst=50.240.105.225 sport=80 dport=63142 [ASSURED]
mark=0 secctx=null use=2
tcp 6 42 SYN_SENT src=192.168.1.158 dst=192.168.16.150 sport=59617
dport=9100 [UNREPLIED] src=192.168.16.150 dst=50.240.105.225 sport=9100
dport=59617 mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.100 sport=59615
dport=443 src=74.125.137.100 dst=50.240.105.225 sport=443 dport=59615 [ASSURED]
mark=0 secctx=null use=2
udp 17 19 src=192.168.1.50 dst=192.168.1.254 sport=10705 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=10705 mark=0 secctx=null use=2
tcp 6 431989 ESTABLISHED src=192.168.1.167 dst=204.79.197.200 sport=53040
dport=80 src=204.79.197.200 dst=50.240.105.225 sport=80 dport=53040 [ASSURED]
mark=0 secctx=null use=2
tcp 6 112 TIME_WAIT src=192.168.1.61 dst=74.125.196.108 sport=3226
dport=995 src=74.125.196.108 dst=50.240.105.225 sport=995 dport=3226 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.95 sport=59600
dport=443 src=74.125.137.95 dst=50.240.105.225 sport=443 dport=59600 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.113 sport=59598
dport=443 src=74.125.137.113 dst=50.240.105.225 sport=443 dport=59598 [ASSURED]
mark=0 secctx=null use=2
udp 17 19 src=192.168.1.50 dst=192.168.1.254 sport=8532 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=8532 mark=0 secctx=null use=2
tcp 6 61 SYN_SENT src=192.168.1.150 dst=192.168.16.150 sport=51624
dport=9100 [UNREPLIED] src=192.168.16.150 dst=50.240.105.225 sport=9100
dport=51624 mark=0 secctx=null use=2
udp 17 18 src=50.240.105.225 dst=204.13.250.4 sport=31473 dport=53
src=204.13.250.4 dst=50.240.105.225 sport=53 dport=31473 mark=0 secctx=null
use=2
tcp 6 109 TIME_WAIT src=192.168.1.167 dst=8.21.199.3 sport=53055 dport=80
src=8.21.199.3 dst=50.240.105.225 sport=80 dport=53055 [ASSURED] mark=0
secctx=null use=2
tcp 6 107 TIME_WAIT src=192.168.1.167 dst=74.125.137.138 sport=53002
dport=443 src=74.125.137.138 dst=50.240.105.225 sport=443 dport=53002 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431998 ESTABLISHED src=192.168.1.16 dst=216.52.184.196 sport=50586
dport=443 src=216.52.184.196 dst=50.240.105.225 sport=443 dport=50586 [ASSURED]
mark=0 secctx=null use=2
icmp 1 26 src=192.168.1.2 dst=92.168.1.16 type=8 code=0 id=2 [UNREPLIED]
src=92.168.1.16 dst=50.240.105.225 type=0 code=0 id=2 mark=0 secctx=null use=2
tcp 6 68 SYN_SENT src=192.168.1.158 dst=192.168.16.150 sport=59623
dport=9100 [UNREPLIED] src=192.168.16.150 dst=50.240.105.225 sport=9100
dport=59623 mark=0 secctx=null use=2
udp 17 19 src=192.168.1.50 dst=192.168.1.254 sport=5684 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=5684 mark=0 secctx=null use=2
tcp 6 431106 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48450
dport=1489 src=127.0.0.1 dst=127.0.0.1 sport=1489 dport=48450 [ASSURED] mark=0
secctx=null use=2
tcp 6 87 TIME_WAIT src=192.168.1.16 dst=216.52.184.196 sport=50573
dport=443 src=216.52.184.196 dst=50.240.105.225 sport=443 dport=50573 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431792 ESTABLISHED src=192.168.1.152 dst=209.104.252.119 sport=49650
dport=5014 src=209.104.252.119 dst=50.240.105.225 sport=5014 dport=49650
[ASSURED] mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=8.26.215.27 sport=34805 dport=53
src=8.26.215.27 dst=50.240.105.225 sport=53 dport=34805 mark=0 secctx=null use=2
tcp 6 431998 ESTABLISHED src=192.168.1.16 dst=216.52.184.196 sport=50587
dport=443 src=216.52.184.196 dst=50.240.105.225 sport=443 dport=50587 [ASSURED]
mark=0 secctx=null use=2
tcp 6 332218 ESTABLISHED src=192.168.1.165 dst=192.168.1.50 sport=49387
dport=139 src=192.168.1.50 dst=192.168.1.165 sport=139 dport=49387 [ASSURED]
mark=0 secctx=null use=2
udp 17 18 src=50.240.105.225 dst=204.13.251.27 sport=11358 dport=53
src=204.13.251.27 dst=50.240.105.225 sport=53 dport=11358 mark=0 secctx=null
use=2
tcp 6 431858 ESTABLISHED src=192.168.1.157 dst=209.104.252.119 sport=52064
dport=5014 src=209.104.252.119 dst=50.240.105.225 sport=5014 dport=52064
[ASSURED] mark=0 secctx=null use=2
unknown 50 255 src=75.137.32.198 dst=50.240.105.225 src=50.240.105.225
dst=75.137.32.198 mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.95 sport=59602
dport=443 src=74.125.137.95 dst=50.240.105.225 sport=443 dport=59602 [ASSURED]
mark=0 secctx=null use=2
tcp 6 9 CLOSE src=192.168.1.10 dst=64.74.106.230 sport=53163 dport=443
src=64.74.106.230 dst=50.240.105.225 sport=443 dport=53163 [ASSURED] mark=0
secctx=null use=2
tcp 6 431989 ESTABLISHED src=192.168.1.167 dst=23.67.61.51 sport=53035
dport=80 src=23.67.61.51 dst=50.240.105.225 sport=80 dport=53035 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.84 sport=59558
dport=443 src=74.125.137.84 dst=50.240.105.225 sport=443 dport=59558 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.139 sport=59576
dport=443 src=74.125.137.139 dst=50.240.105.225 sport=443 dport=59576 [ASSURED]
mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=192.31.80.30 sport=48005 dport=53
src=192.31.80.30 dst=50.240.105.225 sport=53 dport=48005 mark=0 secctx=null
use=2
udp 17 18 src=50.240.105.225 dst=208.78.70.27 sport=21787 dport=53
src=208.78.70.27 dst=50.240.105.225 sport=53 dport=21787 mark=0 secctx=null
use=2
tcp 6 69 TIME_WAIT src=192.168.1.67 dst=209.104.252.126 sport=1543
dport=443 src=209.104.252.126 dst=50.240.105.225 sport=443 dport=1543 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.103 sport=59584
dport=443 src=74.125.137.103 dst=50.240.105.225 sport=443 dport=59584 [ASSURED]
mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=68.180.130.15 sport=26062 dport=53
src=68.180.130.15 dst=50.240.105.225 sport=53 dport=26062 mark=0 secctx=null
use=2
tcp 6 107 TIME_WAIT src=192.168.1.167 dst=74.125.137.106 sport=52998
dport=443 src=74.125.137.106 dst=50.240.105.225 sport=443 dport=52998 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.196.188 sport=59547
dport=5228 src=74.125.196.188 dst=50.240.105.225 sport=5228 dport=59547
[ASSURED] mark=0 secctx=null use=2
tcp 6 58 CLOSE_WAIT src=192.168.1.167 dst=23.235.39.184 sport=53029
dport=80 src=23.235.39.184 dst=50.240.105.225 sport=80 dport=53029 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431989 ESTABLISHED src=192.168.1.167 dst=204.79.197.200 sport=53041
dport=80 src=204.79.197.200 dst=50.240.105.225 sport=80 dport=53041 [ASSURED]
mark=0 secctx=null use=2
udp 17 18 src=50.240.105.225 dst=204.13.251.27 sport=35316 dport=53
src=204.13.251.27 dst=50.240.105.225 sport=53 dport=35316 mark=0 secctx=null
use=2
udp 17 19 src=50.240.105.225 dst=208.78.71.27 sport=48159 dport=53
src=208.78.71.27 dst=50.240.105.225 sport=53 dport=48159 mark=0 secctx=null
use=2
tcp 6 53 CLOSE_WAIT src=192.168.1.167 dst=173.255.227.17 sport=53024
dport=80 src=173.255.227.17 dst=50.240.105.225 sport=80 dport=53024 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.84 sport=59557
dport=443 src=74.125.137.84 dst=50.240.105.225 sport=443 dport=59557 [ASSURED]
mark=0 secctx=null use=2
tcp 6 58 CLOSE_WAIT src=192.168.1.167 dst=23.235.39.184 sport=53028
dport=80 src=23.235.39.184 dst=50.240.105.225 sport=80 dport=53028 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431998 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48451
dport=1489 src=127.0.0.1 dst=127.0.0.1 sport=1489 dport=48451 [ASSURED] mark=0
secctx=null use=2
udp 17 19 src=50.240.105.225 dst=205.251.192.27 sport=16543 dport=53
src=205.251.192.27 dst=50.240.105.225 sport=53 dport=16543 mark=0 secctx=null
use=2
tcp 6 431881 ESTABLISHED src=192.168.1.163 dst=23.67.61.56 sport=52279
dport=80 src=23.67.61.56 dst=50.240.105.225 sport=80 dport=52279 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431988 ESTABLISHED src=192.168.1.167 dst=74.125.137.106 sport=53020
dport=80 src=74.125.137.106 dst=50.240.105.225 sport=80 dport=53020 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431998 ESTABLISHED src=192.168.1.50 dst=64.74.103.171 sport=12351
dport=443 src=64.74.103.171 dst=50.240.105.225 sport=443 dport=12351 [ASSURED]
mark=0 secctx=null use=2
tcp 6 109 TIME_WAIT src=192.168.1.167 dst=8.21.199.3 sport=53036 dport=80
src=8.21.199.3 dst=50.240.105.225 sport=80 dport=53036 [ASSURED] mark=0
secctx=null use=2
tcp 6 33 CLOSE_WAIT src=208.118.199.112 dst=50.240.105.225 sport=49292
dport=12101 src=50.240.105.225 dst=208.118.199.112 sport=12101 dport=49292
[ASSURED] mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.94 sport=59614
dport=443 src=74.125.137.94 dst=50.240.105.225 sport=443 dport=59614 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431989 ESTABLISHED src=192.168.1.167 dst=216.52.121.177 sport=53049
dport=80 src=216.52.121.177 dst=50.240.105.225 sport=80 dport=53049 [ASSURED]
mark=0 secctx=null use=2
tcp 6 53 CLOSE_WAIT src=192.168.1.167 dst=173.255.227.17 sport=53025
dport=80 src=173.255.227.17 dst=50.240.105.225 sport=80 dport=53025 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431950 ESTABLISHED src=192.168.1.62 dst=209.104.252.119 sport=2134
dport=5007 src=209.104.252.119 dst=50.240.105.225 sport=5007 dport=2134
[ASSURED] mark=0 secctx=null use=2
tcp 6 94 SYN_SENT src=192.168.1.158 dst=192.168.16.150 sport=59628
dport=9100 [UNREPLIED] src=192.168.16.150 dst=50.240.105.225 sport=9100
dport=59628 mark=0 secctx=null use=2
udp 17 5 src=192.168.1.150 dst=192.168.16.150 sport=64594 dport=161
[UNREPLIED] src=192.168.16.150 dst=50.240.105.225 sport=161 dport=64594 mark=0
secctx=null use=2
udp 17 5 src=192.168.1.132 dst=255.255.255.255 sport=17500 dport=17500
[UNREPLIED] src=255.255.255.255 dst=192.168.1.132 sport=17500 dport=17500
mark=0 secctx=null use=2
tcp 6 25 CLOSE_WAIT src=192.168.1.167 dst=93.184.215.200 sport=53012
dport=443 src=93.184.215.200 dst=50.240.105.225 sport=443 dport=53012 [ASSURED]
mark=0 secctx=null use=2
tcp 6 59 CLOSE_WAIT src=192.168.1.167 dst=198.51.152.83 sport=53039
dport=80 src=198.51.152.83 dst=50.240.105.225 sport=80 dport=53039 [ASSURED]
mark=0 secctx=null use=2
tcp 6 36 TIME_WAIT src=192.168.1.16 dst=216.52.184.196 sport=50574
dport=443 src=216.52.184.196 dst=50.240.105.225 sport=443 dport=50574 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431969 ESTABLISHED src=192.168.1.158 dst=107.6.97.20 sport=50229
dport=5938 src=107.6.97.20 dst=50.240.105.225 sport=5938 dport=50229 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431987 ESTABLISHED src=192.168.1.167 dst=74.125.137.106 sport=53019
dport=80 src=74.125.137.106 dst=50.240.105.225 sport=80 dport=53019 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431950 ESTABLISHED src=192.168.1.63 dst=209.104.252.119 sport=65237
dport=5007 src=209.104.252.119 dst=50.240.105.225 sport=5007 dport=65237
[ASSURED] mark=0 secctx=null use=2
tcp 6 431106 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48449
dport=1489 src=127.0.0.1 dst=127.0.0.1 sport=1489 dport=48449 [ASSURED] mark=0
secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.19 sport=59548
dport=443 src=74.125.137.19 dst=50.240.105.225 sport=443 dport=59548 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431979 ESTABLISHED src=192.168.1.254 dst=192.168.1.156 sport=36490
dport=3389 src=192.168.1.156 dst=192.168.1.254 sport=3389 dport=36490 [ASSURED]
mark=0 secctx=null use=2
tcp 6 27 TIME_WAIT src=192.168.1.16 dst=216.52.184.196 sport=50577
dport=443 src=216.52.184.196 dst=50.240.105.225 sport=443 dport=50577 [ASSURED]
mark=0 secctx=null use=2
udp 17 14 src=192.168.1.132 dst=192.168.1.255 sport=137 dport=137
[UNREPLIED] src=192.168.1.255 dst=192.168.1.132 sport=137 dport=137 mark=0
secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=23.67.61.171 sport=59601 dport=80
src=23.67.61.171 dst=50.240.105.225 sport=80 dport=59601 [ASSURED] mark=0
secctx=null use=2
udp 17 19 src=192.168.1.50 dst=192.168.1.254 sport=7741 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=7741 mark=0 secctx=null use=2
tcp 6 431991 ESTABLISHED src=192.168.1.132 dst=209.104.252.119 sport=63091
dport=5007 src=209.104.252.119 dst=50.240.105.225 sport=5007 dport=63091
[ASSURED] mark=0 secctx=null use=2
tcp 6 431998 ESTABLISHED src=208.118.199.112 dst=50.240.105.225
sport=51078 dport=8267 src=50.240.105.225 dst=208.118.199.112 sport=8267
dport=51078 [ASSURED] mark=0 secctx=null use=2
tcp 6 431989 ESTABLISHED src=192.168.1.167 dst=65.52.108.3 sport=53044
dport=80 src=65.52.108.3 dst=50.240.105.225 sport=80 dport=53044 [ASSURED]
mark=0 secctx=null use=2
tcp 6 107 TIME_WAIT src=192.168.1.167 dst=74.125.137.139 sport=53003
dport=443 src=74.125.137.139 dst=50.240.105.225 sport=443 dport=53003 [ASSURED]
mark=0 secctx=null use=2
tcp 6 109 TIME_WAIT src=192.168.1.167 dst=8.21.199.3 sport=53054 dport=80
src=8.21.199.3 dst=50.240.105.225 sport=80 dport=53054 [ASSURED] mark=0
secctx=null use=2
tcp 6 431793 ESTABLISHED src=192.168.1.150 dst=209.104.252.119 sport=51301
dport=5014 src=209.104.252.119 dst=50.240.105.225 sport=5014 dport=51301
[ASSURED] mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=68.180.131.16 sport=45319 dport=53
src=68.180.131.16 dst=50.240.105.225 sport=53 dport=45319 mark=0 secctx=null
use=2
udp 17 19 src=50.240.105.225 dst=205.251.192.4 sport=7640 dport=53
src=205.251.192.4 dst=50.240.105.225 sport=53 dport=7640 mark=0 secctx=null
use=2
udp 17 5 src=192.168.1.132 dst=192.168.1.255 sport=17500 dport=17500
[UNREPLIED] src=192.168.1.255 dst=192.168.1.132 sport=17500 dport=17500 mark=0
secctx=null use=2
tcp 6 107 TIME_WAIT src=192.168.1.167 dst=74.125.137.120 sport=53000
dport=443 src=74.125.137.120 dst=50.240.105.225 sport=443 dport=53000 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.189 sport=59568
dport=443 src=74.125.137.189 dst=50.240.105.225 sport=443 dport=59568 [ASSURED]
mark=0 secctx=null use=2
tcp 6 109 TIME_WAIT src=192.168.1.167 dst=8.15.229.35 sport=53042 dport=80
src=8.15.229.35 dst=50.240.105.225 sport=80 dport=53042 [ASSURED] mark=0
secctx=null use=2
tcp 6 52 CLOSE_WAIT src=192.168.1.167 dst=8.15.229.35 sport=53043 dport=80
src=8.15.229.35 dst=50.240.105.225 sport=80 dport=53043 [ASSURED] mark=0
secctx=null use=2
udp 17 19 src=50.240.105.225 dst=205.251.194.252 sport=61651 dport=53
src=205.251.194.252 dst=50.240.105.225 sport=53 dport=61651 mark=0 secctx=null
use=2
udp 17 19 src=192.168.1.50 dst=192.168.1.254 sport=2646 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=2646 mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.132 sport=59571
dport=443 src=74.125.137.132 dst=50.240.105.225 sport=443 dport=59571 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431950 ESTABLISHED src=192.168.1.153 dst=209.104.252.119 sport=51061
dport=5007 src=209.104.252.119 dst=50.240.105.225 sport=5007 dport=51061
[ASSURED] mark=0 secctx=null use=2
udp 17 19 src=192.168.1.50 dst=192.168.1.254 sport=16343 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=16343 mark=0 secctx=null use=2
tcp 6 431950 ESTABLISHED src=192.168.1.82 dst=209.104.252.119 sport=2357
dport=5007 src=209.104.252.119 dst=50.240.105.225 sport=5007 dport=2357
[ASSURED] mark=0 secctx=null use=2
tcp 6 60 TIME_WAIT src=192.168.1.16 dst=216.52.184.196 sport=50572
dport=443 src=216.52.184.196 dst=50.240.105.225 sport=443 dport=50572 [ASSURED]
mark=0 secctx=null use=2
tcp 6 7 CLOSE src=192.168.1.10 dst=64.74.106.231 sport=53057 dport=443
src=64.74.106.231 dst=50.240.105.225 sport=443 dport=53057 [ASSURED] mark=0
secctx=null use=2
tcp 6 112 TIME_WAIT src=192.168.1.61 dst=74.125.196.108 sport=3225
dport=995 src=74.125.196.108 dst=50.240.105.225 sport=995 dport=3225 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431996 ESTABLISHED src=192.168.1.82 dst=159.140.193.10 sport=4263
dport=443 src=159.140.193.10 dst=50.240.105.225 sport=443 dport=4263 [ASSURED]
mark=0 secctx=null use=2
udp 17 18 src=50.240.105.225 dst=23.62.229.4 sport=40889 dport=53
src=23.62.229.4 dst=50.240.105.225 sport=53 dport=40889 mark=0 secctx=null use=2
tcp 6 431987 ESTABLISHED src=192.168.1.155 dst=173.194.37.54 sport=53642
dport=443 src=173.194.37.54 dst=50.240.105.225 sport=443 dport=53642 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431792 ESTABLISHED src=192.168.1.16 dst=209.104.252.119 sport=26639
dport=5014 src=209.104.252.119 dst=50.240.105.225 sport=5014 dport=26639
[ASSURED] mark=0 secctx=null use=2
tcp 6 107 TIME_WAIT src=192.168.1.167 dst=74.125.137.106 sport=53010
dport=443 src=74.125.137.106 dst=50.240.105.225 sport=443 dport=53010 [ASSURED]
mark=0 secctx=null use=2
tcp 6 20 TIME_WAIT src=192.168.1.158 dst=74.125.137.113 sport=59594
dport=443 src=74.125.137.113 dst=50.240.105.225 sport=443 dport=59594 [ASSURED]
mark=0 secctx=null use=2
tcp 6 109 TIME_WAIT src=192.168.1.167 dst=8.21.199.3 sport=53050 dport=80
src=8.21.199.3 dst=50.240.105.225 sport=80 dport=53050 [ASSURED] mark=0
secctx=null use=2
tcp 6 431988 ESTABLISHED src=192.168.1.167 dst=23.67.61.51 sport=53034
dport=80 src=23.67.61.51 dst=50.240.105.225 sport=80 dport=53034 [ASSURED]
mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=192.33.4.12 sport=40515 dport=53
src=192.33.4.12 dst=50.240.105.225 sport=53 dport=40515 mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=192.33.4.12 sport=20513 dport=53
src=192.33.4.12 dst=50.240.105.225 sport=53 dport=20513 mark=0 secctx=null use=2
tcp 6 107 TIME_WAIT src=192.168.1.167 dst=74.125.137.106 sport=52996
dport=443 src=74.125.137.106 dst=50.240.105.225 sport=443 dport=52996 [ASSURED]
mark=0 secctx=null use=2
tcp 6 108 TIME_WAIT src=192.168.1.167 dst=65.55.83.125 sport=53027
dport=443 src=65.55.83.125 dst=50.240.105.225 sport=443 dport=53027 [ASSURED]
mark=0 secctx=null use=2
tcp 6 118 SYN_SENT src=192.168.1.150 dst=192.168.16.150 sport=51630
dport=9100 [UNREPLIED] src=192.168.16.150 dst=50.240.105.225 sport=9100
dport=51630 mark=0 secctx=null use=2
tcp 6 109 TIME_WAIT src=192.168.1.167 dst=198.51.152.83 sport=53038
dport=80 src=198.51.152.83 dst=50.240.105.225 sport=80 dport=53038 [ASSURED]
mark=0 secctx=null use=2
tcp 6 119 SYN_SENT src=192.168.1.158 dst=192.168.16.150 sport=59632
dport=9100 [UNREPLIED] src=192.168.16.150 dst=50.240.105.225 sport=9100
dport=59632 mark=0 secctx=null use=2
tcp 6 431998 ESTABLISHED src=192.168.1.16 dst=216.52.184.196 sport=50589
dport=443 src=216.52.184.196 dst=50.240.105.225 sport=443 dport=50589 [ASSURED]
mark=0 secctx=null use=2
tcp 6 15 TIME_WAIT src=192.168.1.158 dst=50.63.202.31 sport=59572 dport=80
src=50.63.202.31 dst=50.240.105.225 sport=80 dport=59572 [ASSURED] mark=0
secctx=null use=2
udp 17 16 src=192.168.1.2 dst=192.168.1.255 sport=138 dport=138
[UNREPLIED] src=192.168.1.255 dst=192.168.1.2 sport=138 dport=138 mark=0
secctx=null use=2
tcp 6 431106 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48448
dport=1489 src=127.0.0.1 dst=127.0.0.1 sport=1489 dport=48448 [ASSURED] mark=0
secctx=null use=2
udp 17 19 src=50.240.105.225 dst=192.33.4.12 sport=44780 dport=53
src=192.33.4.12 dst=50.240.105.225 sport=53 dport=44780 mark=0 secctx=null use=2
udp 17 18 src=50.240.105.225 dst=216.239.34.10 sport=16621 dport=53
src=216.239.34.10 dst=50.240.105.225 sport=53 dport=16621 mark=0 secctx=null
use=2
tcp 6 431998 ESTABLISHED src=192.168.1.10 dst=216.52.184.210 sport=62403
dport=9922 src=216.52.184.210 dst=50.240.105.225 sport=9922 dport=62403
[ASSURED] mark=0 secctx=null use=2
tcp 6 431046 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48447
dport=1489 src=127.0.0.1 dst=127.0.0.1 sport=1489 dport=48447 [ASSURED] mark=0
secctx=null use=2
tcp 6 431950 ESTABLISHED src=192.168.1.10 dst=209.104.252.119 sport=40092
dport=5007 src=209.104.252.119 dst=50.240.105.225 sport=5007 dport=40092
[ASSURED] mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=156.154.68.196 sport=20358 dport=53
src=156.154.68.196 dst=50.240.105.225 sport=53 dport=20358 mark=0 secctx=null
use=2
udp 17 19 src=50.240.105.225 dst=205.251.196.95 sport=49734 dport=53
src=205.251.196.95 dst=50.240.105.225 sport=53 dport=49734 mark=0 secctx=null
use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.190 sport=59618
dport=443 src=74.125.137.190 dst=50.240.105.225 sport=443 dport=59618 [ASSURED]
mark=0 secctx=null use=2
tcp 6 52 TIME_WAIT src=192.168.1.62 dst=209.104.252.126 sport=2133
dport=443 src=209.104.252.126 dst=50.240.105.225 sport=443 dport=2133 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.120 sport=59581
dport=443 src=74.125.137.120 dst=50.240.105.225 sport=443 dport=59581 [ASSURED]
mark=0 secctx=null use=2
tcp 6 354336 ESTABLISHED src=192.168.1.154 dst=74.125.196.109 sport=64828
dport=993 src=74.125.196.109 dst=50.240.105.225 sport=993 dport=64828 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431988 ESTABLISHED src=192.168.1.167 dst=74.125.137.113 sport=53033
dport=80 src=74.125.137.113 dst=50.240.105.225 sport=80 dport=53033 [ASSURED]
mark=0 secctx=null use=2
tcp 6 430956 ESTABLISHED src=192.168.1.160 dst=17.172.238.26 sport=50652
dport=5223 src=17.172.238.26 dst=50.240.105.225 sport=5223 dport=50652
[ASSURED] mark=0 secctx=null use=2
tcp 6 431890 ESTABLISHED src=192.168.1.158 dst=23.67.61.179 sport=59593
dport=80 src=23.67.61.179 dst=50.240.105.225 sport=80 dport=59593 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431999 ESTABLISHED src=192.168.1.157 dst=50.248.103.230 sport=51709
dport=9010 src=50.248.103.230 dst=50.240.105.225 sport=9010 dport=51709
[ASSURED] mark=0 secctx=null use=2
udp 17 18 src=192.168.1.50 dst=192.168.1.254 sport=6888 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=6888 mark=0 secctx=null use=2
tcp 6 49 TIME_WAIT src=192.168.1.61 dst=74.125.196.108 sport=3220
dport=995 src=74.125.196.108 dst=50.240.105.225 sport=995 dport=3220 [ASSURED]
mark=0 secctx=null use=2
tcp 6 109 TIME_WAIT src=192.168.1.167 dst=216.52.121.177 sport=53048
dport=80 src=216.52.121.177 dst=50.240.105.225 sport=80 dport=53048 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431950 ESTABLISHED src=192.168.1.163 dst=209.104.252.119 sport=52260
dport=5007 src=209.104.252.119 dst=50.240.105.225 sport=5007 dport=52260
[ASSURED] mark=0 secctx=null use=2
tcp 6 431792 ESTABLISHED src=192.168.1.26 dst=209.104.252.119 sport=56312
dport=5014 src=209.104.252.119 dst=50.240.105.225 sport=5014 dport=56312
[ASSURED] mark=0 secctx=null use=2
tcp 6 431950 ESTABLISHED src=192.168.1.89 dst=209.104.252.119 sport=4007
dport=5007 src=209.104.252.119 dst=50.240.105.225 sport=5007 dport=4007
[ASSURED] mark=0 secctx=null use=2
udp 17 17 src=192.168.1.50 dst=192.168.1.254 sport=11589 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=11589 mark=0 secctx=null use=2
tcp 6 299 ESTABLISHED src=173.14.110.233 dst=50.240.105.225 sport=55989
dport=22 src=50.240.105.225 dst=173.14.110.233 sport=22 dport=55989 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.193 sport=59606
dport=443 src=74.125.137.193 dst=50.240.105.225 sport=443 dport=59606 [ASSURED]
mark=0 secctx=null use=2
udp 17 18 src=192.168.1.50 dst=192.168.1.254 sport=14454 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=14454 mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.100 sport=59613
dport=443 src=74.125.137.100 dst=50.240.105.225 sport=443 dport=59613 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431944 ESTABLISHED src=192.168.1.163 dst=23.67.61.74 sport=52281
dport=80 src=23.67.61.74 dst=50.240.105.225 sport=80 dport=52281 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.94 sport=59591
dport=443 src=74.125.137.94 dst=50.240.105.225 sport=443 dport=59591 [ASSURED]
mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=208.78.71.5 sport=3362 dport=53
src=208.78.71.5 dst=50.240.105.225 sport=53 dport=3362 mark=0 secctx=null use=2
tcp 6 431792 ESTABLISHED src=192.168.1.162 dst=209.104.252.119 sport=52594
dport=5014 src=209.104.252.119 dst=50.240.105.225 sport=5014 dport=52594
[ASSURED] mark=0 secctx=null use=2
tcp 6 58 CLOSE_WAIT src=192.168.1.167 dst=199.27.76.130 sport=53031
dport=80 src=199.27.76.130 dst=50.240.105.225 sport=80 dport=53031 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.132 sport=59574
dport=443 src=74.125.137.132 dst=50.240.105.225 sport=443 dport=59574 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431989 ESTABLISHED src=192.168.1.167 dst=65.52.108.3 sport=53045
dport=80 src=65.52.108.3 dst=50.240.105.225 sport=80 dport=53045 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431920 ESTABLISHED src=192.168.1.164 dst=17.172.232.181 sport=51642
dport=5223 src=17.172.232.181 dst=50.240.105.225 sport=5223 dport=51642
[ASSURED] mark=0 secctx=null use=2
tcp 6 431989 ESTABLISHED src=192.168.1.167 dst=54.85.204.35 sport=53052
dport=80 src=54.85.204.35 dst=50.240.105.225 sport=80 dport=53052 [ASSURED]
mark=0 secctx=null use=2
tcp 6 35 SYN_SENT src=192.168.1.150 dst=192.168.16.150 sport=51622
dport=9100 [UNREPLIED] src=192.168.16.150 dst=50.240.105.225 sport=9100
dport=51622 mark=0 secctx=null use=2
tcp 6 431792 ESTABLISHED src=192.168.1.158 dst=209.104.252.119 sport=59526
dport=5014 src=209.104.252.119 dst=50.240.105.225 sport=5014 dport=59526
[ASSURED] mark=0 secctx=null use=2
tcp 6 11 SYN_SENT src=192.168.1.158 dst=192.168.16.150 sport=59544
dport=9100 [UNREPLIED] src=192.168.16.150 dst=50.240.105.225 sport=9100
dport=59544 mark=0 secctx=null use=2
udp 17 21 src=192.168.1.158 dst=192.168.16.150 sport=58739 dport=161
[UNREPLIED] src=192.168.16.150 dst=50.240.105.225 sport=161 dport=58739 mark=0
secctx=null use=2
tcp 6 266055 ESTABLISHED src=192.168.1.154 dst=74.125.196.108 sport=62654
dport=993 src=74.125.196.108 dst=50.240.105.225 sport=993 dport=62654 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431993 ESTABLISHED src=208.118.199.112 dst=50.240.105.225
sport=51079 dport=8267 src=50.240.105.225 dst=208.118.199.112 sport=8267
dport=51079 [ASSURED] mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=131.253.21.2 sport=48160 dport=53
src=131.253.21.2 dst=50.240.105.225 sport=53 dport=48160 mark=0 secctx=null
use=2
tcp 6 431952 ESTABLISHED src=192.168.1.155 dst=173.194.37.54 sport=53953
dport=443 src=173.194.37.54 dst=50.240.105.225 sport=443 dport=53953 [ASSURED]
mark=0 secctx=null use=2
tcp 6 51 TIME_WAIT src=192.168.1.132 dst=209.104.252.126 sport=63143
dport=443 src=209.104.252.126 dst=50.240.105.225 sport=443 dport=63143
[ASSURED] mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=156.154.66.196 sport=10347 dport=53
src=156.154.66.196 dst=50.240.105.225 sport=53 dport=10347 mark=0 secctx=null
use=2
udp 17 19 src=192.168.1.50 dst=192.168.1.254 sport=2707 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=2707 mark=0 secctx=null use=2
tcp 6 109 TIME_WAIT src=192.168.1.167 dst=8.21.199.3 sport=53051 dport=80
src=8.21.199.3 dst=50.240.105.225 sport=80 dport=53051 [ASSURED] mark=0
secctx=null use=2
tcp 6 431996 ESTABLISHED src=192.168.1.62 dst=159.140.193.10 sport=2590
dport=443 src=159.140.193.10 dst=50.240.105.225 sport=443 dport=2590 [ASSURED]
mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=192.31.80.30 sport=31457 dport=53
src=192.31.80.30 dst=50.240.105.225 sport=53 dport=31457 mark=0 secctx=null
use=2
udp 17 19 src=50.240.105.225 dst=131.253.21.1 sport=19615 dport=53
src=131.253.21.1 dst=50.240.105.225 sport=53 dport=19615 mark=0 secctx=null
use=2
udp 17 18 src=50.240.105.225 dst=208.78.71.4 sport=18237 dport=53
src=208.78.71.4 dst=50.240.105.225 sport=53 dport=18237 mark=0 secctx=null use=2
tcp 6 431989 ESTABLISHED src=192.168.1.167 dst=72.30.202.150 sport=53046
dport=80 src=72.30.202.150 dst=50.240.105.225 sport=80 dport=53046 [ASSURED]
mark=0 secctx=null use=2
udp 17 17 src=50.240.105.225 dst=208.78.71.27 sport=5076 dport=53
src=208.78.71.27 dst=50.240.105.225 sport=53 dport=5076 mark=0 secctx=null use=2
tcp 6 50 TIME_WAIT src=192.168.1.61 dst=74.125.196.108 sport=3221
dport=995 src=74.125.196.108 dst=50.240.105.225 sport=995 dport=3221 [ASSURED]
mark=0 secctx=null use=2
tcp 6 107 TIME_WAIT src=192.168.1.167 dst=74.125.137.106 sport=53009
dport=443 src=74.125.137.106 dst=50.240.105.225 sport=443 dport=53009 [ASSURED]
mark=0 secctx=null use=2
tcp 6 41 TIME_WAIT src=192.168.1.158 dst=74.125.137.113 sport=59597
dport=443 src=74.125.137.113 dst=50.240.105.225 sport=443 dport=59597 [ASSURED]
mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=205.251.192.4 sport=23476 dport=53
src=205.251.192.4 dst=50.240.105.225 sport=53 dport=23476 mark=0 secctx=null
use=2
tcp 6 59 CLOSE_WAIT src=208.118.199.112 dst=50.240.105.225 sport=51077
dport=80 src=50.240.105.225 dst=208.118.199.112 sport=80 dport=51077 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431998 ESTABLISHED src=192.168.1.155 dst=159.140.193.10 sport=53132
dport=443 src=159.140.193.10 dst=50.240.105.225 sport=443 dport=53132 [ASSURED]
mark=0 secctx=null use=2
udp 17 19 src=50.240.105.225 dst=205.251.194.252 sport=28194 dport=53
src=205.251.194.252 dst=50.240.105.225 sport=53 dport=28194 mark=0 secctx=null
use=2
udp 17 18 src=192.168.1.50 dst=192.168.1.254 sport=11073 dport=53
src=192.168.1.254 dst=192.168.1.50 sport=53 dport=11073 mark=0 secctx=null use=2
tcp 6 53 CLOSE_WAIT src=192.168.1.167 dst=173.255.227.17 sport=53026
dport=80 src=173.255.227.17 dst=50.240.105.225 sport=80 dport=53026 [ASSURED]
mark=0 secctx=null use=2
tcp 6 431975 ESTABLISHED src=192.168.1.10 dst=162.220.222.5 sport=26020
dport=5938 src=162.220.222.5 dst=50.240.105.225 sport=5938 dport=26020
[ASSURED] mark=0 secctx=null use=2
tcp 6 431989 ESTABLISHED src=192.168.1.167 dst=54.85.204.35 sport=53053
dport=80 src=54.85.204.35 dst=50.240.105.225 sport=80 dport=53053 [ASSURED]
mark=0 secctx=null use=2
tcp 6 56 CLOSE_WAIT src=192.168.1.167 dst=8.21.199.3 sport=53037 dport=80
src=8.21.199.3 dst=50.240.105.225 sport=80 dport=53037 [ASSURED] mark=0
secctx=null use=2
IP Configuration
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN
inet 127.0.0.1/8 brd 127.255.255.255 scope host lo
valid_lft forever preferred_lft forever
2: enp2s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP
qlen 1000
inet 50.240.105.225/30 brd 50.240.105.227 scope global enp2s0
valid_lft forever preferred_lft forever
4: enp3s7: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP
qlen 1000
inet 192.168.1.254/24 brd 192.168.1.255 scope global enp3s7
valid_lft forever preferred_lft forever
IP Stats
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode
DEFAULT
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
RX: bytes packets errors dropped overrun mcast
60299492 412154 0 0 0 0
TX: bytes packets errors dropped carrier collsns
60299492 412154 0 0 0 0
2: enp2s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP
mode DEFAULT qlen 1000
link/ether bc:ae:c5:57:6d:09 brd ff:ff:ff:ff:ff:ff
RX: bytes packets errors dropped overrun mcast
441031434105 366823197 0 0 0 0
TX: bytes packets errors dropped carrier collsns
72708956000 250940481 0 0 1 0
3: enp3s6: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT
qlen 1000
link/ether 00:14:bf:58:33:14 brd ff:ff:ff:ff:ff:ff
RX: bytes packets errors dropped overrun mcast
0 0 0 0 0 0
TX: bytes packets errors dropped carrier collsns
0 0 0 0 0 0
4: enp3s7: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP
mode DEFAULT qlen 1000
link/ether 00:02:b3:08:05:d2 brd ff:ff:ff:ff:ff:ff
RX: bytes packets errors dropped overrun mcast
72860532701 255896122 0 954180 0 0
TX: bytes packets errors dropped carrier collsns
440438632473 367161730 0 0 0 0
5: sit0: <NOARP> mtu 1480 qdisc noop state DOWN mode DEFAULT
link/sit 0.0.0.0 brd 0.0.0.0
RX: bytes packets errors dropped overrun mcast
0 0 0 0 0 0
TX: bytes packets errors dropped carrier collsns
0 0 0 0 0 0
Routing Rules
0: from all lookup local
220: from all lookup 220
32766: from all lookup main
32767: from all lookup default
Table 220:
192.168.5.0/24 via 50.240.105.226 dev enp2s0 proto static src 192.168.1.254
Table default:
Table local:
local 50.240.105.225 dev enp2s0 proto kernel scope host src 50.240.105.225
local 192.168.1.254 dev enp3s7 proto kernel scope host src 192.168.1.254
local 127.0.0.1 dev lo proto kernel scope host src 127.0.0.1
broadcast 50.240.105.227 dev enp2s0 proto kernel scope link src 50.240.105.225
broadcast 50.240.105.224 dev enp2s0 proto kernel scope link src 50.240.105.225
broadcast 192.168.1.255 dev enp3s7 proto kernel scope link src 192.168.1.254
broadcast 192.168.1.0 dev enp3s7 proto kernel scope link src 192.168.1.254
broadcast 127.255.255.255 dev lo proto kernel scope link src 127.0.0.1
broadcast 127.0.0.0 dev lo proto kernel scope link src 127.0.0.1
local 127.0.0.0/8 dev lo proto kernel scope host src 127.0.0.1
Table main:
50.240.105.224/30 dev enp2s0 proto kernel scope link src 50.240.105.225
192.168.1.0/24 dev enp3s7 proto kernel scope link src 192.168.1.254
127.0.0.0/8 via 127.0.0.1 dev lo
127.0.0.0/8 dev lo scope host
default via 50.240.105.226 dev enp2s0 metric 2
Per-IP Counters
iptaccount is not installed
NF Accounting
No NF Accounting defined (nfacct not found)
Events
PFKEY SPD
192.168.5.0/24[any] 192.168.1.0/24[any] 255
fwd prio high + 1073739965 ipsec
esp/tunnel/75.137.32.198-50.240.105.225/unique:64
created: Oct 16 14:33:20 2014 lastused: Oct 16 14:46:49 2014
lifetime: 0(s) validtime: 0(s)
spid=3232434 seq=1 pid=27195
refcnt=5
192.168.5.0/24[any] 192.168.1.0/24[any] 255
in prio high + 1073739965 ipsec
esp/tunnel/75.137.32.198-50.240.105.225/unique:64
created: Oct 16 14:33:20 2014 lastused: Oct 16 14:47:02 2014
lifetime: 0(s) validtime: 0(s)
spid=3232424 seq=2 pid=27195
refcnt=3
192.168.1.0/24[any] 192.168.5.0/24[any] 255
out prio high + 1073739965 ipsec
esp/tunnel/50.240.105.225-75.137.32.198/unique:64
created: Oct 16 14:33:20 2014 lastused: Oct 16 14:47:01 2014
lifetime: 0(s) validtime: 0(s)
spid=3232417 seq=3 pid=27195
refcnt=5
(per-socket policy)
in(socket) none
created: Oct 15 10:57:48 2014 lastused: Oct 16 11:13:04 2014
lifetime: 0(s) validtime: 0(s)
spid=3230875 seq=4 pid=27195
refcnt=1
(per-socket policy)
out(socket) none
created: Oct 15 10:57:48 2014 lastused: Oct 16 11:13:04 2014
lifetime: 0(s) validtime: 0(s)
spid=3230868 seq=5 pid=27195
refcnt=1
(per-socket policy)
in(socket) none
created: Oct 15 10:57:48 2014 lastused: Oct 16 14:52:02 2014
lifetime: 0(s) validtime: 0(s)
spid=3230859 seq=6 pid=27195
refcnt=1
(per-socket policy)
out(socket) none
created: Oct 15 10:57:48 2014 lastused: Oct 16 14:52:02 2014
lifetime: 0(s) validtime: 0(s)
spid=3230852 seq=7 pid=27195
refcnt=1
(per-socket policy)
in(socket) none
created: Oct 15 10:57:48 2014 lastused:
lifetime: 0(s) validtime: 0(s)
spid=3230843 seq=8 pid=27195
refcnt=1
(per-socket policy)
out(socket) none
created: Oct 15 10:57:48 2014 lastused:
lifetime: 0(s) validtime: 0(s)
spid=3230836 seq=9 pid=27195
refcnt=1
(per-socket policy)
in(socket) none
created: Oct 15 10:57:48 2014 lastused:
lifetime: 0(s) validtime: 0(s)
spid=3230827 seq=10 pid=27195
refcnt=1
(per-socket policy)
out(socket) none
created: Oct 15 10:57:48 2014 lastused:
lifetime: 0(s) validtime: 0(s)
spid=3230820 seq=0 pid=27195
refcnt=1
PFKEY SAD
50.240.105.225 75.137.32.198
esp mode=tunnel spi=3482972605(0xcf99f1bd) reqid=64(0x00000040)
seq=0x00000000 replay=32 flags=0x00000000 state=mature
created: Oct 16 14:33:20 2014 current: Oct 16 14:52:46 2014
diff: 1166(s) hard: 3600(s) soft: 3035(s)
last: Oct 16 14:38:08 2014 hard: 0(s) soft: 0(s)
current: 1705(bytes) hard: 0(bytes) soft: 0(bytes)
allocated: 11 hard: 0 soft: 0
sadb_seq=1 pid=27196 refcnt=0
75.137.32.198 50.240.105.225
esp mode=tunnel spi=3335235110(0xc6cba626) reqid=64(0x00000040)
seq=0x00000000 replay=32 flags=0x00000000 state=mature
created: Oct 16 14:33:20 2014 current: Oct 16 14:52:46 2014
diff: 1166(s) hard: 3600(s) soft: 2659(s)
last: Oct 16 14:38:08 2014 hard: 0(s) soft: 0(s)
current: 1751(bytes) hard: 0(bytes) soft: 0(bytes)
allocated: 19 hard: 0 soft: 0
sadb_seq=0 pid=27196 refcnt=0
/proc
/proc/version = Linux version 3.12.21-gentoo-r1 (root@mss-rtr) (gcc version
4.7.3 (Gentoo 4.7.3-r1 p1.4, pie-0.5.5) ) #1 SMP Thu Jun 19 15:40:23 CDT 2014
/proc/sys/net/ipv4/ip_forward = 1
/proc/sys/net/ipv4/icmp_echo_ignore_all = 0
/proc/sys/net/ipv4/conf/all/proxy_arp = 0
/proc/sys/net/ipv4/conf/all/arp_filter = 0
/proc/sys/net/ipv4/conf/all/arp_ignore = 0
/proc/sys/net/ipv4/conf/all/rp_filter = 0
/proc/sys/net/ipv4/conf/all/log_martians = 0
/proc/sys/net/ipv4/conf/default/proxy_arp = 0
/proc/sys/net/ipv4/conf/default/arp_filter = 0
/proc/sys/net/ipv4/conf/default/arp_ignore = 0
/proc/sys/net/ipv4/conf/default/rp_filter = 0
/proc/sys/net/ipv4/conf/default/log_martians = 1
/proc/sys/net/ipv4/conf/enp2s0/proxy_arp = 0
/proc/sys/net/ipv4/conf/enp2s0/arp_filter = 0
/proc/sys/net/ipv4/conf/enp2s0/arp_ignore = 0
/proc/sys/net/ipv4/conf/enp2s0/rp_filter = 1
/proc/sys/net/ipv4/conf/enp2s0/log_martians = 1
/proc/sys/net/ipv4/conf/enp3s6/proxy_arp = 0
/proc/sys/net/ipv4/conf/enp3s6/arp_filter = 0
/proc/sys/net/ipv4/conf/enp3s6/arp_ignore = 0
/proc/sys/net/ipv4/conf/enp3s6/rp_filter = 0
/proc/sys/net/ipv4/conf/enp3s6/log_martians = 1
/proc/sys/net/ipv4/conf/enp3s7/proxy_arp = 0
/proc/sys/net/ipv4/conf/enp3s7/arp_filter = 0
/proc/sys/net/ipv4/conf/enp3s7/arp_ignore = 0
/proc/sys/net/ipv4/conf/enp3s7/rp_filter = 0
/proc/sys/net/ipv4/conf/enp3s7/log_martians = 1
/proc/sys/net/ipv4/conf/lo/proxy_arp = 0
/proc/sys/net/ipv4/conf/lo/arp_filter = 0
/proc/sys/net/ipv4/conf/lo/arp_ignore = 0
/proc/sys/net/ipv4/conf/lo/rp_filter = 0
/proc/sys/net/ipv4/conf/lo/log_martians = 1
/proc/sys/net/ipv4/conf/sit0/proxy_arp = 0
/proc/sys/net/ipv4/conf/sit0/arp_filter = 0
/proc/sys/net/ipv4/conf/sit0/arp_ignore = 0
/proc/sys/net/ipv4/conf/sit0/rp_filter = 0
/proc/sys/net/ipv4/conf/sit0/log_martians = 1
ARP
? (192.168.1.50) at 00:18:fe:81:24:97 [ether] on enp3s7
? (192.168.1.152) at 64:80:99:0a:56:68 [ether] on enp3s7
? (192.168.1.132) at d4:85:64:c4:b8:07 [ether] on enp3s7
? (192.168.1.81) at 00:18:fe:6c:29:4e [ether] on enp3s7
? (192.168.1.72) at <incomplete> on enp3s7
? (192.168.1.67) at 00:18:de:4b:e2:23 [ether] on enp3s7
? (192.168.1.160) at 04:15:52:60:bd:0a [ether] on enp3s7
? (192.168.1.51) at <incomplete> on enp3s7
? (192.168.1.153) at 00:1f:29:34:ea:4b [ether] on enp3s7
? (192.168.1.86) at <incomplete> on enp3s7
? (192.168.1.73) at <incomplete> on enp3s7
? (192.168.1.26) at 00:0c:29:d3:4f:b9 [ether] on enp3s7
? (192.168.1.161) at 14:10:9f:c3:ee:30 [ether] on enp3s7
? (192.168.1.15) at <incomplete> on enp3s7
? (192.168.1.57) at <incomplete> on enp3s7
? (192.168.1.158) at 44:37:e6:0a:de:9f [ether] on enp3s7
? (192.168.1.87) at <incomplete> on enp3s7
? (192.168.1.78) at <incomplete> on enp3s7
? (192.168.1.166) at 74:27:ea:32:a6:c9 [ether] on enp3s7
? (192.168.1.62) at 00:0f:fe:48:5d:31 [ether] on enp3s7
? (192.168.1.159) at 24:ab:81:f9:89:9a [ether] on enp3s7
? (192.168.1.150) at 74:e5:0b:4f:2a:70 [ether] on enp3s7
? (169.254.32.92) at 70:18:8b:07:f2:01 [ether] on enp3s7
? (192.168.1.84) at <incomplete> on enp3s7
? (192.168.1.79) at <incomplete> on enp3s7
? (192.168.1.10) at bc:30:5b:e1:1b:bc [ether] on enp3s7
? (192.168.1.167) at 10:08:b1:b0:9e:37 [ether] on enp3s7
? (192.168.1.63) at f0:4d:a2:26:a7:6d [ether] on enp3s7
? (192.168.1.156) at d4:85:64:17:9e:09 [ether] on enp3s7
? (192.168.1.151) at <incomplete> on enp3s7
? (192.168.1.82) at 00:18:fe:6c:28:77 [ether] on enp3s7
? (50.240.105.226) at c4:39:3a:92:d8:aa [ether] on enp2s0
? (192.168.1.85) at <incomplete> on enp3s7
? (192.168.1.76) at <incomplete> on enp3s7
? (192.168.1.25) at 00:0c:29:84:22:80 [ether] on enp3s7
? (192.168.1.71) at <incomplete> on enp3s7
? (192.168.1.16) at 3c:4a:92:e2:ce:d7 [ether] on enp3s7
? (192.168.1.11) at <incomplete> on enp3s7
? (192.168.1.164) at 04:15:52:99:bc:41 [ether] on enp3s7
? (192.168.1.2) at 00:0c:29:72:60:c4 [ether] on enp3s7
? (192.168.1.5) at d4:ae:52:cb:f3:08 [ether] on enp3s7
? (192.168.1.99) at 00:26:73:14:df:38 [ether] on enp3s7
? (192.168.1.60) at <incomplete> on enp3s7
? (192.168.1.154) at <incomplete> on enp3s7
? (192.168.1.157) at 78:2b:cb:86:54:5c [ether] on enp3s7
? (192.168.1.88) at <incomplete> on enp3s7
? (192.168.1.83) at <incomplete> on enp3s7
? (192.168.1.74) at <incomplete> on enp3s7
? (192.168.1.77) at <incomplete> on enp3s7
? (192.168.1.162) at 1c:65:9d:a8:07:b0 [ether] on enp3s7
? (192.168.1.165) at <incomplete> on enp3s7
? (192.168.1.3) at 00:0c:29:f4:cc:47 [ether] on enp3s7
? (192.168.1.58) at <incomplete> on enp3s7
? (192.168.1.61) at 00:0f:fe:48:5d:4d [ether] on enp3s7
? (192.168.1.155) at 00:1a:73:be:6c:84 [ether] on enp3s7
? (192.168.1.52) at <incomplete> on enp3s7
? (192.168.1.89) at 00:1f:29:34:f2:cb [ether] on enp3s7
? (192.168.1.80) at <incomplete> on enp3s7
? (192.168.1.75) at <incomplete> on enp3s7
? (192.168.1.66) at <incomplete> on enp3s7
? (192.168.1.168) at <incomplete> on enp3s7
? (192.168.1.163) at 70:18:8b:07:f2:01 [ether] on enp3s7
? (192.168.1.59) at <incomplete> on enp3s7
Modules
ip_set 20922 1 xt_set
ip_tables 16466 4
iptable_filter,iptable_mangle,iptable_nat,iptable_raw
ipt_CLUSTERIP 5385 0
ipt_ECN 1808 0
ipt_MASQUERADE 1658 1
ipt_REJECT 2265 4
ipt_ULOG 4539 0
ipt_ah 1101 0
ipt_rpfilter 1756 0
iptable_filter 1376 1
iptable_mangle 1504 1
iptable_nat 2702 1
iptable_raw 1268 1
nf_conntrack 68184 35
nf_nat_ftp,nf_nat_irc,nf_nat_sip,nf_nat_amanda,xt_CT,nf_nat_snmp_basic,nf_conntrack_netbios_ns,nf_conntrack_proto_gre,xt_helper,ipt_MASQUERADE,nf_conntrack_proto_udplite,nf_nat,xt_state,xt_connlimit,nf_nat_h323,nf_nat_ipv4,nf_nat_pptp,nf_nat_tftp,xt_conntrack,nf_conntrack_amanda,ipt_CLUSTERIP,nf_conntrack_proto_sctp,nf_conntrack_netlink,nf_conntrack_broadcast,xt_connmark,nf_conntrack_ftp,nf_conntrack_irc,nf_conntrack_sip,iptable_nat,nf_conntrack_h323,nf_conntrack_ipv4,nf_conntrack_pptp,nf_conntrack_sane,nf_conntrack_snmp,nf_conntrack_tftp
nf_conntrack_amanda 2717 3 nf_nat_amanda
nf_conntrack_broadcast 1173 2 nf_conntrack_netbios_ns,nf_conntrack_snmp
nf_conntrack_ftp 6935 3 nf_nat_ftp
nf_conntrack_h323 41986 5 nf_nat_h323
nf_conntrack_ipv4 12403 49
nf_conntrack_irc 3715 3 nf_nat_irc
nf_conntrack_netbios_ns 1061 2
nf_conntrack_netlink 26878 0
nf_conntrack_pptp 4289 3 nf_nat_pptp
nf_conntrack_proto_gre 4599 1 nf_conntrack_pptp
nf_conntrack_proto_sctp 8476 0
nf_conntrack_proto_udplite 4075 0
nf_conntrack_sane 4068 2
nf_conntrack_sip 20981 3 nf_nat_sip
nf_conntrack_snmp 1195 3 nf_nat_snmp_basic
nf_conntrack_tftp 3841 3 nf_nat_tftp
nf_defrag_ipv4 1323 2 xt_TPROXY,nf_conntrack_ipv4
nf_defrag_ipv6 22569 1 xt_TPROXY
nf_nat 10926 12
nf_nat_ftp,nf_nat_irc,nf_nat_sip,nf_nat_amanda,ipt_MASQUERADE,nf_nat_proto_gre,nf_nat_h323,nf_nat_ipv4,nf_nat_pptp,nf_nat_tftp,xt_nat,iptable_nat
nf_nat_amanda 1136 0
nf_nat_ftp 1716 0
nf_nat_h323 5871 0
nf_nat_ipv4 3424 1 iptable_nat
nf_nat_irc 1390 0
nf_nat_pptp 2202 0
nf_nat_proto_gre 1301 1 nf_nat_pptp
nf_nat_sip 8549 0
nf_nat_snmp_basic 7480 0
nf_nat_tftp 942 0
xt_AUDIT 2851 0
xt_CHECKSUM 1151 0
xt_CLASSIFY 1045 0
xt_CT 3954 22
xt_DSCP 2131 0
xt_LOG 11986 8
xt_NFLOG 1078 0
xt_NFQUEUE 2330 0
xt_TCPMSS 3327 0
xt_TPROXY 4455 0
xt_addrtype 2773 5
xt_comment 915 44
xt_connlimit 3023 0
xt_connmark 1733 0
xt_conntrack 3089 26
xt_dccp 1923 0
xt_dscp 1619 0
xt_hashlimit 7805 0
xt_helper 1315 0
xt_iprange 1496 0
xt_length 1172 0
xt_limit 1833 0
xt_mac 971 0
xt_mark 1133 1
xt_multiport 1678 4
xt_nat 1793 0
xt_owner 1139 0
xt_pkttype 1043 0
xt_policy 2434 26
xt_realm 943 0
xt_recent 8276 1
xt_sctp 2200 0
xt_set 5399 0
xt_state 1183 0
xt_statistic 1231 0
xt_tcpmss 1393 0
xt_tcpudp 2359 58
xt_time 2035 0
Shorewall has detected the following iptables/netfilter capabilities:
ACCOUNT Target (ACCOUNT_TARGET): Not available
AUDIT Target (AUDIT_TARGET): Available
Address Type Match (ADDRTYPE): Available
Amanda Helper: Available
Arptables JF: Not available
Basic Filter (BASIC_FILTER): Available
CLASSIFY Target (CLASSIFY_TARGET): Available
CONNMARK Target (CONNMARK): Available
CT Target (CT_TARGET): Available
Capabilities Version (CAPVERSION): 40515
Checksum Target: Available
Comments (COMMENTS): Available
Condition Match (CONDITION_MATCH): Not available
Connection Tracking Match (CONNTRACK_MATCH): Available
Connlimit Match (CONNLIMIT_MATCH): Available
Connmark Match (CONNMARK_MATCH): Available
DSCP Match (DSCP_MATCH): Available
DSCP Target (DSCP_TARGET): Available
Enhanced Multi-port Match (EMULIPORT): Available
Extended CONNMARK Target (XCONNMARK): Available
Extended Connection Tracking Match Support (NEW_CONNTRACK_MATCH): Available
Extended Connmark Match (XCONNMARK_MATCH): Available
Extended MARK Target (XMARK): Available
Extended MARK Target 2 (EXMARK): Available
Extended Multi-port Match (XMULIPORT): Available
Extended REJECT (ENHANCED_REJECT): Available
FLOW Classifier (FLOW_FILTER): Available
FTP Helper: Available
FTP-0 Helper: Not available
Geo IP match: Not available
Goto Support (GOTO_TARGET): Available
H323 Helper: Available
Hashlimit Match (HASHLIMIT_MATCH): Available
Header Match (HEADER_MATCH): Not available
Helper Match (HELPER_MATCH): Available
IMQ Target (IMQ_TARGET): Not available
IP range Match(IPRANGE_MATCH): Available
IPMARK Target (IPMARK_TARGET): Not available
IPP2P Match (IPP2P_MATCH): Not available
IRC Helper: Available
IRC-0 Helper: Not available
Kernel Version (KERNELVERSION): 31221
LOG Target (LOG_TARGET): Available
LOGMARK Target (LOGMARK_TARGET): Not available
MARK Target (MARK): Available
MASQUERADE Target: Available
Mangle FORWARD Chain (MANGLE_FORWARD): Available
Mark in the filter table (MARK_ANYWHERE): Available
Multi-port Match (MULTIPORT): Available
NAT (NAT_ENABLED): Available
NFAcct match: Not available
NFLOG Target (NFLOG_TARGET): Available
NFQUEUE Target (NFQUEUE_TARGET): Available
Netbios_ns Helper: Available
New tos Match: Available
Owner Match (OWNER_MATCH): Available
Owner Name Match (OWNER_NAME_MATCH): Available
PPTP Helper: Available
Packet Mangling (MANGLE_ENABLED): Available
Packet Type Match (USEPKTTYPE): Available
Packet length Match (LENGTH_MATCH): Available
Persistent SNAT (PERSISTENT_SNAT): Available
Physdev Match (PHYSDEV_MATCH): Not available
Physdev-is-bridged Support (PHYSDEV_BRIDGE): Not available
Policy Match (POLICY_MATCH): Available
RPFilter match: Available
Raw Table (RAW_TABLE): Available
Rawpost Table (RAWPOST_TABLE): Not available
Realm Match (REALM_MATCH): Available
Recent Match "--reap" option (REAP_OPTION): Available
Recent Match (RECENT_MATCH): Available
Repeat match (KLUDGEFREE): Available
SANE Helper: Available
SANE-0 Helper: Not available
SIP Helper: Available
SIP-0 Helper: Not available
SNMP Helper: Available
Statistic Match (STATISTIC_MATCH): Available
TCPMSS Match (TCPMSS_MATCH): Available
TFTP Helper: Available
TFTP-0 Helper: Not available
TPROXY Target (TPROXY_TARGET): Available
Time Match (TIME_MATCH): Available
UDPLITE Port Redirection: Not available
ULOG Target (ULOG_TARGET): Available
fwmark route mask (FWMARK_RT_MASK): Available
ipset V5 (IPSET_V5): Not available
iptables -S (IPTABLES_S): Available
Netid State Recv-Q Send-Q Local Address:Port Peer Address:Port
udp UNCONN 0 0 192.168.1.254:53 *:*
users:(("named",3360,514))
udp UNCONN 0 0 50.240.105.225:53 *:*
users:(("named",3360,513))
udp UNCONN 0 0 127.0.0.1:53 *:*
users:(("named",3360,512))
udp UNCONN 215040 0 *:68 *:*
users:(("charon",21783,18))
udp UNCONN 0 0 192.168.1.254:123 *:*
users:(("ntpd",3472,20))
udp UNCONN 0 0 50.240.105.225:123 *:*
users:(("ntpd",3472,19))
udp UNCONN 0 0 127.0.0.1:123 *:*
users:(("ntpd",3472,18))
udp UNCONN 0 0 *:123 *:*
users:(("ntpd",3472,16))
udp UNCONN 0 0 *:4500 *:*
users:(("charon",21783,14))
udp UNCONN 0 0 *:500 *:*
users:(("charon",21783,13))
tcp LISTEN 0 0 *:4633 *:*
users:(("java",3583,423))
tcp LISTEN 0 0 127.0.0.1:953 *:*
users:(("named",3360,23))
tcp LISTEN 0 0 *:4060 *:*
users:(("java",3583,406))
tcp LISTEN 0 0 *:1277 *:*
users:(("java",3583,411))
tcp LISTEN 0 0 *:1278 *:*
users:(("java",3583,413))
tcp LISTEN 0 0 *:5632 *:*
users:(("java",3583,426))
tcp LISTEN 0 0 *:4899 *:*
users:(("java",3583,433))
tcp LISTEN 0 0 *:12100 *:*
users:(("java",3583,479))
tcp LISTEN 0 0 *:8196 *:*
users:(("java",3583,441))
tcp LISTEN 0 0 *:4900 *:*
users:(("java",3583,435))
tcp LISTEN 0 0 127.0.0.1:4901 *:*
users:(("java",3583,432))
tcp LISTEN 0 0 *:1285 *:*
users:(("java",3583,415))
tcp LISTEN 0 0 *:1286 *:*
users:(("java",3583,416))
tcp LISTEN 0 0 *:5642 *:*
users:(("java",3583,425))
tcp LISTEN 0 0 *:8267 *:*
users:(("java",3583,440))
tcp LISTEN 0 0 *:8270 *:*
users:(("java",3583,427))
tcp LISTEN 0 0 *:1489 *:*
users:(("java",3583,444))
tcp LISTEN 0 0 192.168.1.254:53 *:*
users:(("named",3360,22))
tcp LISTEN 0 0 50.240.105.225:53 *:*
users:(("named",3360,21))
tcp LISTEN 0 0 127.0.0.1:53 *:*
users:(("named",3360,20))
tcp LISTEN 0 0 *:22 *:*
users:(("sshd",3403,3))
tcp LISTEN 0 0 *:5687 *:*
users:(("java",3583,460))
tcp LISTEN 0 0 *:5688 *:*
users:(("java",3583,461))
tcp ESTAB 0 0 50.240.105.225:8267 208.118.199.112:51079
users:(("java",3583,472))
tcp ESTAB 0 0 192.168.1.254:36490 192.168.1.156:3389
users:(("java",3583,481))
tcp ESTAB 0 0 127.0.0.1:1489 127.0.0.1:48448
users:(("java",3583,462))
tcp ESTAB 0 0 127.0.0.1:1489 127.0.0.1:48451
users:(("java",3583,471))
tcp CLOSE-WAIT 0 67738 50.240.105.225:12101 208.118.199.112:49292
users:(("java",3583,480))
tcp ESTAB 0 0 127.0.0.1:1489 127.0.0.1:48449
users:(("java",3583,464))
tcp ESTAB 0 0 127.0.0.1:1489 127.0.0.1:48447
users:(("java",3583,469))
tcp ESTAB 0 0 127.0.0.1:48449 127.0.0.1:1489
users:(("java",3583,463))
tcp ESTAB 0 0 127.0.0.1:48450 127.0.0.1:1489
users:(("java",3583,465))
tcp ESTAB 0 0 127.0.0.1:1489 127.0.0.1:48450
users:(("java",3583,467))
tcp ESTAB 0 0 50.240.105.225:12100 208.118.199.112:51086
users:(("java",3583,482))
tcp ESTAB 0 0 50.240.105.225:8267 208.118.199.112:51078
users:(("java",3583,477))
tcp ESTAB 0 0 127.0.0.1:48448 127.0.0.1:1489
users:(("java",3583,437))
tcp ESTAB 0 0 127.0.0.1:48447 127.0.0.1:1489
users:(("java",3583,468))
tcp ESTAB 0 0 192.168.1.254:36514 192.168.1.156:3389
users:(("java",3583,483))
tcp ESTAB 0 0 127.0.0.1:48451 127.0.0.1:1489
users:(("java",3583,470))
tcp ESTAB 0 0 50.240.105.225:8267 208.118.199.112:51080
users:(("java",3583,474))
tcp ESTAB 0 0 50.240.105.225:22 173.14.110.233:55989
users:(("sshd",27085,3))
Traffic Control
Device enp2s0:
qdisc pfifo_fast 0: root refcnt 2 bands 3 priomap 1 2 2 2 1 2 0 0 1 1 1 1 1 1
1 1
Sent 71695224367 bytes 250940521 pkt (dropped 0, overlimits 0 requeues 73)
backlog 0b 0p requeues 73
Device enp3s7:
qdisc pfifo_fast 0: root refcnt 2 bands 3 priomap 1 2 2 2 1 2 0 0 1 1 1 1 1 1
1 1
Sent 440438750507 bytes 367161814 pkt (dropped 0, overlimits 0 requeues 211)
backlog 0b 0p requeues 211
TC Filters
Device enp2s0:
Device enp3s7:
------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
