Iptables - NTE-RG-1402F Административная консоль

Статус Iptables

Target Filter
Chain INPUT (policy ACCEPT 1498 packets, 205K bytes)
num	pkts	bytes	target	prot	opt	in	out	source	destination	options
1	0	0	REJECT	tcp	--	*	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:80 state NEW recent: UPDATE seconds: 1 hit_count: 10 name: DEFAULT side: source reject-with icmp-port-unreachable
2	193	11580	tcp	--	*	*	0.0.0.0/0	0.0.0.0/0	tcp	dpt:80 state NEW recent: SET name: DEFAULT side: source
3	0	0	ACCEPT	all	--	lo	*	0.0.0.0/0	0.0.0.0/0
4	0	0	REJECT	tcp	--	*	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:2103 reject-with icmp-port-unreachable
5	1793	227K	ACCEPT	all	--	eth0.4094	*	0.0.0.0/0	0.0.0.0/0
6	0	0	ACCEPT	icmp	--	eth0.4094	*	0.0.0.0/0	0.0.0.0/0
7	0	0	REJECT	udp	--	ppp0	*	0.0.0.0/0	0.0.0.0/0	udp dpt:53 reject-with icmp-port-unreachable
8	0	0	REJECT	tcp	--	ppp0	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:3240 reject-with icmp-port-unreachable
9	0	0	ACCEPT	tcp	--	vlanL_0	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:80
10	0	0	REJECT	tcp	--	ppp0	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:80 reject-with icmp-port-unreachable
11	0	0	REJECT	tcp	--	vlanL_0	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:23 reject-with icmp-port-unreachable
12	0	0	REJECT	tcp	--	ppp0	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:23 reject-with icmp-port-unreachable
13	0	0	REJECT	tcp	--	vlanL_0	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:22 reject-with icmp-port-unreachable
14	0	0	REJECT	tcp	--	ppp0	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:22 reject-with icmp-port-unreachable
15	0	0	ACCEPT	tcp	--	vlanL_0	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:20
16	0	0	ACCEPT	tcp	--	vlanL_0	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:21
17	0	0	REJECT	tcp	--	ppp0	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:20 reject-with icmp-port-unreachable
18	0	0	REJECT	tcp	--	ppp0	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:21 reject-with icmp-port-unreachable
19	0	0	REJECT	tcp	--	*	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:80 reject-with icmp-port-unreachable
20	0	0	REJECT	tcp	--	*	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:23 reject-with icmp-port-unreachable
21	0	0	REJECT	tcp	--	*	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:20 reject-with icmp-port-unreachable
22	0	0	REJECT	tcp	--	*	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:21 reject-with icmp-port-unreachable
23	0	0	REJECT	tcp	--	*	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:22 reject-with icmp-port-unreachable

Chain FORWARD (policy ACCEPT 2274K packets, 3056M bytes)
num	pkts	bytes	target	prot	opt	in	out	source	destination	options
1	0	0	TCPMSS	tcp	--	*	*	0.0.0.0/0	0.0.0.0/0	tcp flags:0x06/0x02 TCPMSS clamp to PMTU
2	0	0	DROP	all	--	vlanL_0	!ppp0	0.0.0.0/0	!224.0.0.0/4
3	0	0	DROP	all	--	ppp0	!vlanL_0	0.0.0.0/0	!224.0.0.0/4
4	0	0	DROP	all	--	eth2.2	!eth0.2	0.0.0.0/0	!224.0.0.0/4
5	0	0	DROP	all	--	eth0.2	!eth2.2	0.0.0.0/0	!224.0.0.0/4
6	0	0	DROP	all	--	br1	*	0.0.0.0/0	!224.0.0.0/4
7	0	0	DROP	all	--	*	br1	0.0.0.0/0	!224.0.0.0/4
8	0	0	DROP	all	--	br2	*	0.0.0.0/0	!224.0.0.0/4
9	0	0	DROP	all	--	*	br2	0.0.0.0/0	!224.0.0.0/4
10	0	0	DROP	all	--	br3	*	0.0.0.0/0	!224.0.0.0/4
11	0	0	DROP	all	--	*	br3	0.0.0.0/0	!224.0.0.0/4

Chain OUTPUT (policy ACCEPT 1561 packets, 547K bytes)
num	pkts	bytes	target	prot	opt	in	out	source	destination	options
1	0	0	ACCEPT	all	--	*	lo	0.0.0.0/0	0.0.0.0/0
2	206	8300	DROP	all	--	*	eth0.4094	0.0.0.0/0	0.0.0.0/0	! owner UID match 0

Target NAT
Chain PREROUTING (policy ACCEPT 4505 packets, 375K bytes)
num	pkts	bytes	target	prot	opt	in	out	source	destination	options

Chain POSTROUTING (policy ACCEPT 4 packets, 1500 bytes)
num	pkts	bytes	target	prot	opt	in	out	source	destination	options
1	0	0	MASQUERADE	all	--	*	ppp0	0.0.0.0/0	0.0.0.0/0
2	0	0	MASQUERADE	all	--	*	eth0.2	0.0.0.0/0	0.0.0.0/0

Chain OUTPUT (policy ACCEPT 3 packets, 156 bytes)
num	pkts	bytes	target	prot	opt	in	out	source	destination	options

Target Mangle
Chain PREROUTING (policy ACCEPT 158M packets, 210G bytes)
num	pkts	bytes	target	prot	opt	in	out	source	destination	options

Chain INPUT (policy ACCEPT 239K packets, 29M bytes)
num	pkts	bytes	target	prot	opt	in	out	source	destination	options

Chain FORWARD (policy ACCEPT 156M packets, 210G bytes)
num	pkts	bytes	target	prot	opt	in	out	source	destination	options

Chain OUTPUT (policy ACCEPT 4657 packets, 2082K bytes)
num	pkts	bytes	target	prot	opt	in	out	source	destination	options

Chain POSTROUTING (policy ACCEPT 156M packets, 210G bytes)
num	pkts	bytes	target	prot	opt	in	out	source	destination	options

Административная консоль X-Wrt

NTE-RG-1402F

Статус:

Статус Iptables

Target Filter

Chain INPUT (policy ACCEPT 1498 packets, 205K bytes)

Chain FORWARD (policy ACCEPT 2274K packets, 3056M bytes)

Chain OUTPUT (policy ACCEPT 1561 packets, 547K bytes)

Target NAT

Chain PREROUTING (policy ACCEPT 4505 packets, 375K bytes)

Chain POSTROUTING (policy ACCEPT 4 packets, 1500 bytes)

Chain OUTPUT (policy ACCEPT 3 packets, 156 bytes)

Target Mangle

Chain PREROUTING (policy ACCEPT 158M packets, 210G bytes)

Chain INPUT (policy ACCEPT 239K packets, 29M bytes)

Chain FORWARD (policy ACCEPT 156M packets, 210G bytes)

Chain OUTPUT (policy ACCEPT 4657 packets, 2082K bytes)

Chain POSTROUTING (policy ACCEPT 156M packets, 210G bytes)

X-Wrt