When I first set up shorewall to do my iptables stuff I wanted to make
sure my Ampr.org addresses were handled correctly too. Tom, you might
recall that we added '' peers tunl+ '' to the interfaces file
and
'' peers fw accept '', '' fw peers accept ''
to the policy file.
This allowed the 44.xx.xx.xx address to work . Or at least my axip links
worked again. And of course I can telnet to any 44.xx.xx.xx addresses
anywhere in the world using my main machine (router)..
Since than I have noticed that my two lan machines are not able to
reach any 44.xx.xx.xx addresses out in the real world. But they are able
to communicate just fine with any commerical address.
Wondering if there is more I have to do with IPTABLES or is it a routing
problem?
---
Ted Gervais
Coldbrook Nova Scotia
Canada B4R1A7
-------------- next part --------------
##############################################################################
#ZONE INTERFACE BROADCAST OPTIONS
net eth0 detect dhcp,routefilter,norfc1918,blacklist
loc eth1 detect routestopped
peers tunl+
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
-------------- next part --------------
1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
2: eth0: <BROADCAST,MULTICAST,NOTRAILERS,UP> mtu 1500 qdisc pfifo_fast
qlen 100
link/ether 00:50:da:92:bb:20 brd ff:ff:ff:ff:ff:ff
inet 24.224.173.220/24 brd 24.224.173.255 scope global eth0
3: eth1: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100
link/ether 00:50:ba:d0:f2:16 brd ff:ff:ff:ff:ff:ff
inet 192.168.0.1/24 brd 192.168.0.255 scope global eth1
4: tunl0@NONE: <NOARP,UP> mtu 256 qdisc noqueue
link/ipip 0.0.0.0 brd 0.0.0.0
inet 44.135.34.201/32 scope global tunl0
5: nr0: <UP> mtu 216 qdisc noqueue
link/generic ac:8a:62:88:a4:8e:0e brd 00:00:00:00:00:00:00
inet 44.135.34.201/24 brd 44.135.34.255 scope global nr0
6: nr1: <UP> mtu 216 qdisc noqueue
link/generic ac:8a:62:88:a4:8e:00 brd 00:00:00:00:00:00:00
inet 44.135.34.201/24 brd 44.135.34.255 scope global nr1
7: nr2: <> mtu 236 qdisc noop
link/generic 00:00:00:00:00:00:00 brd 00:00:00:00:00:00:00
8: nr3: <> mtu 236 qdisc noop
link/generic 00:00:00:00:00:00:00 brd 00:00:00:00:00:00:00
9: ax0: <BROADCAST,UP> mtu 256 qdisc pfifo_fast qlen 10
link/ax25 ac:8a:62:88:a4:8e:10 brd a2:a6:a8:40:40:40:60
inet 44.135.34.201/24 brd 44.135.34.255 scope global ax0
-------------- next part --------------
Shorewall-1.3.14 Log at linux.ve1drg.ampr.org - Fri Apr 11 08:29:37 ADT 2003
Counters reset Fri Apr 11 08:23:32 ADT 2003
-------------- next part --------------
Module Size Used by Not tainted
ip_nat_irc 2672 0 (unused)
ip_nat_ftp 3472 0 (unused)
ip_conntrack_irc 3024 1 [ip_nat_irc]
ip_conntrack_ftp 4144 1 [ip_nat_ftp]
netrom 26896 4
mkiss 7360 1
ax25 40940 2 [netrom mkiss]
ipip 6692 1
ide-scsi 7888 0
smbfs 35216 0 (unused)
hpfs 64928 0 (unused)
8139too 15144 1
mii 2176 0 [8139too]
3c59x 26672 1
slip 8672 0 (unused)
slhc 5040 0 [slip]
-------------- next part --------------
###############################################################################
#SOURCE DEST POLICY LOG LEVEL LIMIT:BURST
loc net ACCEPT
#
# If you want open access to the internet from your firewall, uncomment the
# following line
fw net ACCEPT
net all DROP info
all all REJECT info
peers fw ACCEPT
fw peers ACCEPT
#LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOTE
-------------- next part --------------
44.137.44.7 via 217.127.76.115 dev tunl0
44.163.64.10 via 206.48.104.7 dev tunl0
44.165.41.53 via 213.25.77.73 dev tunl0
44.137.8.92 via 213.84.255.2 dev tunl0
44.137.40.101 via 217.120.115.8 dev tunl0
44.131.93.240 via 80.192.47.177 dev tunl0
44.110.50.1 via 170.94.140.122 dev tunl0
44.136.203.4 via 150.101.23.150 dev tunl0
44.137.34.5 via 213.10.48.91 dev tunl0
44.130.48.69 via 212.42.253.18 dev tunl0
44.137.8.93 via 213.84.255.2 dev tunl0
44.137.40.100 via 217.120.115.8 dev tunl0
44.131.93.130 via 80.192.47.177 dev tunl0
44.134.208.241 via 146.48.126.28 dev tunl0
44.133.8.37 via 217.126.114.184 dev tunl0
44.133.3.63 via 158.42.128.200 dev tunl0
44.133.228.76 via 80.33.22.10 dev tunl0
44.137.8.94 via 213.84.255.2 dev tunl0
44.136.204.77 via 203.55.198.121 dev tunl0
44.131.95.128 via 80.192.47.177 dev tunl0
44.133.3.8 via 158.42.128.200 dev tunl0
44.135.34.12 via 24.222.230.10 dev tunl0
44.68.12.13 via 24.191.136.157 dev tunl0
44.137.4.25 via 131.155.192.172 dev tunl0
44.137.25.101 via 62.251.68.54 dev tunl0
44.177.10.254 via 193.165.211.34 dev tunl0
44.135.34.13 via 24.222.230.10 dev tunl0
44.137.16.92 via 217.120.115.8 dev tunl0
44.137.40.99 via 217.120.115.8 dev tunl0
44.177.10.10 via 200.152.5.194 dev tunl0
44.92.12.15 via 24.247.140.102 dev tunl0
44.137.44.16 via 212.163.193.3 dev tunl0
44.133.3.27 via 158.42.128.200 dev tunl0
44.137.25.52 via 62.251.68.54 dev tunl0
44.133.3.20 via 158.42.128.200 dev tunl0
44.137.44.31 via 217.120.115.8 dev tunl0
44.133.3.53 via 158.42.128.200 dev tunl0
44.131.94.240 via 80.192.47.177 dev tunl0
44.131.92.6 via 80.192.47.177 dev tunl0
44.137.25.11 via 217.120.115.8 dev tunl0
44.135.96.17 via 132.213.2.244 dev tunl0
44.137.44.63 via 217.120.115.8 dev tunl0
44.134.177.63 via 217.168.237.106 dev tunl0
44.131.130.132 via 80.195.129.53 dev tunl0
44.8.0.155 via 208.179.97.197 dev tunl0
44.135.96.199 via 132.213.2.244 dev tunl0
44.137.40.94 via 217.120.115.8 dev tunl0
44.137.44.28 via 217.120.115.8 dev tunl0
44.133.3.54 via 158.42.128.200 dev tunl0
44.137.40.10 via 213.84.49.184 dev tunl0
44.137.25.14 via 217.120.115.8 dev tunl0
44.48.56.54 via 65.40.78.145 dev tunl0
44.137.25.109 via 217.120.115.8 dev tunl0
44.131.130.129 via 62.31.210.5 dev tunl0
44.130.59.132 via 194.219.59.34 dev tunl0
44.133.228.1 via 80.33.22.10 dev tunl0
44.133.28.92 via 217.127.59.252 dev tunl0
44.137.25.108 via 217.120.115.8 dev tunl0
44.130.59.133 via 194.219.59.34 dev tunl0
44.80.8.136 via 158.136.195.153 dev tunl0
44.134.177.204 via 217.168.237.106 dev tunl0
44.135.98.6 via 216.58.85.11 dev tunl0
44.133.3.18 via 158.42.128.200 dev tunl0
44.137.44.91 via 212.163.193.194 dev tunl0
44.131.130.131 via 80.195.129.53 dev tunl0
44.133.3.3 via 158.42.128.200 dev tunl0
44.133.3.19 via 158.42.128.200 dev tunl0
44.48.56.53 via 65.40.78.145 dev tunl0
44.133.228.65 via 80.33.22.10 dev tunl0
44.131.130.130 via 62.31.210.5 dev tunl0
44.134.33.168 via 160.80.2.11 dev tunl0
44.131.95.240/31 via 80.192.47.177 dev tunl0
44.4.30.136/31 via 131.161.252.211 dev tunl0
44.130.36.86/31 via 212.42.253.18 dev tunl0
44.136.83.160/31 via 203.47.165.205 dev tunl0
44.18.44.40/31 via 216.157.236.10 dev tunl0
44.137.25.80/31 via 62.251.68.54 dev tunl0
44.17.0.128/31 via 216.157.236.10 dev tunl0
44.80.8.134/31 via 158.136.195.153 dev tunl0
44.165.152.36/31 via 195.116.9.8 dev tunl0
44.136.83.146/31 via 203.47.162.1 dev tunl0
44.26.2.10/31 via 12.225.47.116 dev tunl0
44.130.36.44/31 via 212.42.253.18 dev tunl0
44.80.42.200/30 via 68.82.126.174 dev tunl0
44.130.36.88/30 via 212.42.253.18 dev tunl0
44.56.20.60/30 via 216.157.236.10 dev tunl0
44.130.176.120/29 via 217.160.131.83 dev tunl0
44.76.5.200/29 via 206.126.32.179 dev tunl0
44.94.10.8/29 via 137.192.135.28 dev tunl0
44.76.5.208/29 via 206.126.32.179 dev tunl0
44.98.27.32/29 via 67.104.162.180 dev tunl0
44.137.17.0/28 via 217.120.115.8 dev tunl0
44.137.23.0/28 via 217.120.115.8 dev tunl0
44.145.20.32/28 via 216.157.236.10 dev tunl0
44.136.202.224/28 via 202.58.60.69 dev tunl0
44.52.9.128/28 via 216.157.236.10 dev tunl0
44.4.34.64/28 via 131.161.252.211 dev tunl0
44.173.11.0/28 via 207.248.233.134 dev tunl0
44.52.9.96/28 via 216.157.236.10 dev tunl0
44.64.20.96/28 via 207.99.87.214 dev tunl0
44.136.202.0/28 via 202.58.60.69 dev tunl0
44.137.41.96/28 via 213.84.187.156 dev tunl0
44.136.83.128/28 via 210.49.167.114 dev tunl0
44.136.83.144/28 via 203.42.125.90 dev tunl0
44.136.83.160/28 via 203.43.62.145 dev tunl0
44.52.9.128/27 via 65.187.207.37 dev tunl0
44.136.96.96/27 via 203.43.62.145 dev tunl0
44.135.191.0/27 via 137.82.216.4 dev tunl0
44.131.95.0/27 via 80.192.47.177 dev tunl0
44.136.96.32/27 via 210.49.167.114 dev tunl0
44.152.12.0/27 via 200.62.19.66 dev tunl0
44.152.8.0/27 via 150.187.186.132 dev tunl0
44.94.14.32/27 via 206.146.248.64 dev tunl0
44.131.94.64/27 via 80.192.47.177 dev tunl0
44.137.41.32/27 via 213.84.49.184 dev tunl0
44.165.43.0/26 via 195.117.150.156 dev tunl0
44.152.4.0/26 via 150.187.103.5 dev tunl0
44.52.9.64/26 via 65.187.207.37 dev tunl0
44.131.99.64/26 via 62.49.110.197 dev tunl0
44.133.1.0/26 via 213.96.137.53 dev tunl0
44.139.26.0/25 via 195.244.73.18 dev tunl0
44.165.138.0/25 via 212.244.35.170 dev tunl0
44.26.0.128/25 via 192.147.172.252 dev tunl0
44.139.20.128/25 via 130.233.19.186 dev tunl0
44.80.32.128/25 via 205.247.238.193 dev tunl0
44.42.0.0/24 via 204.253.195.103 dev tunl0
44.174.0.0/24 via 200.135.17.8 dev tunl0
44.173.8.0/24 via 148.202.85.248 dev tunl0
44.187.13.0/24 via 193.219.178.233 dev tunl0
44.56.20.0/24 via 146.115.236.141 dev tunl0
44.182.22.0/24 via 217.156.98.250 dev tunl0
44.165.26.0/24 via 80.48.105.183 dev tunl0
44.139.32.0/24 via 130.233.19.186 dev tunl0
44.130.42.0/24 via 217.160.131.83 dev tunl0
44.102.50.0/24 via 68.40.228.2 dev tunl0
44.165.59.0/24 via 213.77.135.65 dev tunl0
44.133.64.0/24 via 193.144.52.168 dev tunl0
44.130.89.0/24 via 141.32.30.117 dev tunl0
44.72.90.0/24 via 64.81.142.87 dev tunl0
44.143.99.0/24 via 140.78.216.35 dev tunl0
24.224.173.0/24 dev eth0 proto kernel scope link src 24.224.173.220
44.136.188.0/24 via 202.58.60.69 dev tunl0
44.173.206.0/24 via 148.202.23.91 dev tunl0
44.70.221.0/24 via 207.0.228.25 dev tunl0
44.136.254.0/24 via 203.24.120.9 dev tunl0
44.108.0.0/24 via 66.233.52.102 dev tunl0
44.108.0.0/24 via 66.233.50.247 dev tunl0
44.174.1.0/24 via 150.162.38.7 dev tunl0
44.133.3.0/24 via 213.98.118.5 dev tunl0
44.76.8.0/24 via 65.70.212.35 dev tunl0
44.187.12.0/24 via 195.14.178.233 dev tunl0
44.174.17.0/24 via 200.18.7.75 dev tunl0
44.102.18.0/24 via 68.40.228.2 dev tunl0
44.72.25.0/24 via 64.81.142.87 dev tunl0
44.137.49.0/24 via 142.222.41.251 dev tunl0
44.131.97.0/24 via 158.152.237.250 dev tunl0
44.72.106.0/24 via 64.81.142.87 dev tunl0
44.134.120.0/24 via 195.223.209.59 dev tunl0
44.165.159.0/24 via 149.156.70.62 dev tunl0
44.174.2.0/24 via 200.171.69.7 dev tunl0
44.108.3.0/24 via 207.254.214.101 dev tunl0
44.50.4.0/24 via 12.217.237.54 dev tunl0
44.94.15.0/24 via 141.224.128.12 dev tunl0
44.182.20.0/24 via 193.226.98.64 dev tunl0
44.132.24.0/24 via 202.149.129.241 dev tunl0
44.72.26.0/24 via 64.81.142.87 dev tunl0
44.165.41.0/24 via 212.160.50.131 dev tunl0
44.102.48.0/24 via 68.40.228.2 dev tunl0
44.135.49.0/24 via 142.139.0.194 dev tunl0
44.174.51.0/24 via 200.18.78.51 dev tunl0
44.135.66.0/24 via 132.209.6.143 dev tunl0
44.72.72.0/24 via 64.81.142.87 dev tunl0
44.135.82.0/24 via 68.40.228.2 dev tunl0
44.136.89.0/24 via 210.49.167.114 dev tunl0
44.130.91.0/24 via 141.32.30.117 dev tunl0
44.114.144.0/24 via 206.176.56.253 dev tunl0
44.165.156.0/24 via 149.156.70.62 dev tunl0
44.102.180.0/24 via 216.46.203.29 dev tunl0
44.131.180.0/24 via 132.185.132.250 dev tunl0
44.188.192.0/24 via 193.193.222.21 dev tunl0
44.188.208.0/24 via 193.110.113.4 dev tunl0
44.174.3.0/24 via 200.201.50.91 dev tunl0
44.155.6.0/24 via 193.1.185.3 dev tunl0
44.130.8.0/24 via 64.51.9.100 dev tunl0
44.136.10.0/24 via 137.111.90.111 dev tunl0
44.102.16.0/24 via 68.40.228.2 dev tunl0
44.182.21.0/24 via 193.226.111.249 dev tunl0
44.132.25.0/24 via 202.149.129.241 dev tunl0
44.165.25.0/24 via 80.48.105.183 dev tunl0
44.135.32.0/24 via 24.222.100.41 dev tunl0
44.165.40.0/24 via 195.117.253.120 dev tunl0
44.80.44.0/24 via 64.51.9.100 dev tunl0
44.135.48.0/24 via 142.222.41.251 dev tunl0
44.174.50.0/24 via 200.183.152.131 dev tunl0
44.137.51.0/24 via 142.222.41.251 dev tunl0
44.72.58.0/24 via 64.81.142.87 dev tunl0
44.135.67.0/24 via 132.209.6.143 dev tunl0
44.46.97.0/24 via 206.61.9.235 dev tunl0
44.72.104.0/24 via 64.81.142.87 dev tunl0
44.134.122.0/24 via 151.38.27.197 dev tunl0
44.165.157.0/24 via 195.116.9.8 dev tunl0
44.136.204.0/24 via 203.59.246.134 dev tunl0
44.188.209.0/24 via 193.124.70.194 dev tunl0
44.108.5.0/24 via 208.164.147.109 dev tunl0
44.173.45.0/24 via 148.202.85.248 dev tunl0
44.178.50.0/24 via 81.20.192.110 dev tunl0
44.137.52.0/24 via 142.222.41.251 dev tunl0
44.135.68.0/24 via 132.209.6.143 dev tunl0
44.72.78.0/24 via 64.81.142.87 dev tunl0
44.130.93.0/24 via 141.32.30.117 dev tunl0
44.136.110.0/24 via 203.208.70.219 dev tunl0
44.131.162.0/24 via 132.185.132.250 dev tunl0
44.135.163.0/24 via 209.52.173.98 dev tunl0
44.136.184.0/24 via 150.101.23.150 dev tunl0
44.255.255.0/24 via 24.234.53.67 dev tunl0
44.52.2.0/24 via 216.157.236.10 dev tunl0
44.174.5.0/24 via 200.180.51.100 dev tunl0
44.187.8.0/24 via 193.219.169.189 dev tunl0
44.60.16.0/24 via 198.31.12.131 dev tunl0
44.177.26.0/24 via 147.251.24.10 dev tunl0
44.72.29.0/24 via 64.81.142.87 dev tunl0
44.80.42.0/24 via 158.136.195.153 dev tunl0
44.165.46.0/24 via 212.160.50.131 dev tunl0
44.132.77.0/24 via 202.92.192.29 dev tunl0
44.135.85.0/24 via 142.222.41.251 dev tunl0
44.129.130.0/24 via 219.166.7.202 dev tunl0
44.165.139.0/24 via 212.182.111.227 dev tunl0
44.135.147.0/24 via 199.185.95.4 dev tunl0
44.131.163.0/24 via 158.152.89.147 dev tunl0
44.174.6.0/24 via 200.246.18.253 dev tunl0
44.173.14.0/24 via 148.202.85.248 dev tunl0
44.136.15.0/24 via 144.132.178.49 dev tunl0
44.182.16.0/24 via 193.226.132.190 dev tunl0
44.80.24.0/24 via 204.183.201.225 dev tunl0
44.129.36.0/24 via 219.166.7.202 dev tunl0
44.174.39.0/24 via 200.251.230.13 dev tunl0
44.138.46.0/24 via 192.117.105.235 dev tunl0
44.153.50.0/24 via 170.155.2.210 dev tunl0
44.102.52.0/24 via 216.157.236.10 dev tunl0
44.182.82.0/24 via 193.226.25.6 dev tunl0
44.135.86.0/24 via 142.222.41.251 dev tunl0
44.165.136.0/24 via 194.204.186.36 dev tunl0
44.135.144.0/24 via 216.157.236.10 dev tunl0
44.131.160.0/24 via 158.152.89.147 dev tunl0
44.135.161.0/24 via 139.142.78.20 dev tunl0
192.168.0.0/24 dev eth1 proto kernel scope link src 192.168.0.1
44.139.6.0/24 via 193.166.150.63 dev tunl0
44.187.10.0/24 via 193.219.167.37 dev tunl0
44.130.12.0/24 via 193.174.117.138 dev tunl0
44.72.15.0/24 via 64.81.142.87 dev tunl0
44.176.16.0/24 via 194.27.119.2 dev tunl0
44.174.23.0/24 via 200.135.8.99 dev tunl0
44.142.31.0/24 via 193.192.23.100 dev tunl0
44.129.37.0/24 via 219.166.7.202 dev tunl0
44.138.47.0/24 via 192.117.122.47 dev tunl0
44.135.52.0/24 via 132.213.2.244 dev tunl0
44.136.92.0/24 via 203.42.125.90 dev tunl0
44.134.95.0/24 via 151.4.191.28 dev tunl0
44.24.104.0/24 via 207.227.239.162 dev tunl0
44.188.112.0/24 via 159.148.60.3 dev tunl0
44.24.120.0/24 via 12.229.52.34 dev tunl0
44.130.127.0/24 via 193.175.191.244 dev tunl0
44.100.144.0/24 via 207.157.18.252 dev tunl0
44.135.160.0/24 via 142.58.173.14 dev tunl0
44.131.161.0/24 via 132.185.132.250 dev tunl0
44.136.171.0/24 via 202.12.89.9 dev tunl0
44.62.196.0/24 via 198.31.12.131 dev tunl0
44.136.200.0/24 via 202.58.60.69 dev tunl0
44.173.0.0/24 via 158.97.1.11 dev tunl0
44.76.1.0/24 via 65.70.212.35 dev tunl0
44.174.8.0/24 via 146.164.128.6 dev tunl0
44.173.16.0/24 via 148.202.85.248 dev tunl0
44.136.17.0/24 via 203.16.244.11 dev tunl0
44.48.30.0/24 via 64.255.99.17 dev tunl0
44.182.30.0/24 via 141.85.43.57 dev tunl0
44.142.33.0/24 via 193.192.23.100 dev tunl0
44.135.43.0/24 via 24.138.74.225 dev tunl0
44.178.46.0/24 via 213.59.225.28 dev tunl0
44.165.51.0/24 via 194.181.194.173 dev tunl0
44.137.56.0/24 via 212.187.32.211 dev tunl0
44.132.64.0/24 via 202.149.129.241 dev tunl0
44.72.66.0/24 via 64.81.142.87 dev tunl0
44.134.80.0/24 via 80.19.171.194 dev tunl0
44.72.82.0/24 via 64.81.142.87 dev tunl0
44.135.88.0/24 via 149.99.17.253 dev tunl0
44.24.103.0/24 via 209.162.138.96 dev tunl0
44.165.113.0/24 via 212.244.139.74 dev tunl0
44.129.120.0/24 via 219.120.106.10 dev tunl0
44.131.120.0/24 via 80.193.27.28 dev tunl0
44.153.153.0/24 via 200.9.147.40 dev tunl0
44.72.181.0/24 via 64.81.142.87 dev tunl0
44.134.245.0/24 via 193.205.128.28 dev tunl0
44.12.0.0/24 via 192.147.172.252 dev tunl0
44.74.1.0/24 via 216.228.98.48 dev tunl0
44.173.1.0/24 via 200.23.120.38 dev tunl0
44.187.4.0/24 via 193.219.55.225 dev tunl0
44.174.9.0/24 via 200.19.190.220 dev tunl0
44.131.10.0/24 via 137.44.4.147 dev tunl0
44.52.14.0/24 via 158.136.195.153 dev tunl0
44.136.16.0/24 via 203.16.244.11 dev tunl0
44.177.22.0/24 via 147.251.24.10 dev tunl0
44.72.32.0/24 via 64.81.142.87 dev tunl0
44.142.32.0/24 via 193.192.23.100 dev tunl0
44.134.34.0/24 via 195.32.107.25 dev tunl0
44.165.34.0/24 via 158.75.126.2 dev tunl0
44.130.97.0/24 via 141.32.30.117 dev tunl0
44.173.114.0/24 via 200.34.232.114 dev tunl0
44.153.152.0/24 via 200.9.147.40 dev tunl0
44.72.180.0/24 via 64.81.142.87 dev tunl0
44.134.244.0/24 via 193.205.128.28 dev tunl0
44.12.3.0/24 via 192.147.172.252 dev tunl0
44.174.10.0/24 via 200.238.163.194 dev tunl0
44.52.13.0/24 via 158.136.195.153 dev tunl0
44.165.16.0/24 via 195.136.2.252 dev tunl0
44.165.33.0/24 via 158.75.126.2 dev tunl0
44.136.34.0/24 via 203.53.98.206 dev tunl0
44.135.41.0/24 via 142.139.0.194 dev tunl0
44.174.43.0/24 via 200.196.74.50 dev tunl0
44.182.45.0/24 via 81.196.160.155 dev tunl0
44.182.45.0/24 via 217.156.120.135 dev tunl0
44.135.90.0/24 via 142.222.41.251 dev tunl0
44.131.91.0/24 via 62.172.121.94 dev tunl0
44.165.132.0/24 via 80.49.186.83 dev tunl0
44.135.173.0/24 via 142.58.173.14 dev tunl0
44.131.223.0/24 via 132.185.132.250 dev tunl0
44.136.228.0/24 via 203.52.139.138 dev tunl0
44.72.3.0/24 via 64.81.142.87 dev tunl0
44.145.28.0/24 via 194.192.135.177 dev tunl0
44.132.32.0/24 via 202.149.129.241 dev tunl0
44.165.32.0/24 via 158.75.126.2 dev tunl0
44.158.38.0/24 via 217.129.142.57 dev tunl0
44.135.40.0/24 via 142.139.0.194 dev tunl0
44.134.48.0/24 via 81.73.149.82 dev tunl0
44.131.57.0/24 via 212.159.74.68 dev tunl0
44.165.83.0/24 via 217.99.156.145 dev tunl0
44.135.91.0/24 via 149.99.17.253 dev tunl0
44.130.99.0/24 via 195.190.142.9 dev tunl0
44.177.128.0/24 via 195.47.60.30 dev tunl0
44.165.133.0/24 via 195.205.94.25 dev tunl0
44.135.172.0/24 via 209.52.67.5 dev tunl0
44.72.182.0/24 via 64.81.142.87 dev tunl0
44.62.200.0/24 via 198.31.12.131 dev tunl0
44.73.236.0/24 via 206.61.9.235 dev tunl0
44.152.1.0/24 via 150.188.8.195 dev tunl0
44.187.1.0/24 via 213.226.135.188 dev tunl0
44.130.7.0/24 via 193.175.191.244 dev tunl0
44.174.12.0/24 via 200.157.71.14 dev tunl0
44.133.14.0/24 via 195.57.18.13 dev tunl0
44.133.30.0/24 via 213.98.118.5 dev tunl0
44.165.39.0/24 via 195.117.33.22 dev tunl0
44.136.52.0/24 via 203.19.77.240 dev tunl0
44.165.55.0/24 via 80.48.40.10 dev tunl0
44.165.68.0/24 via 213.184.16.200 dev tunl0
44.72.70.0/24 via 64.81.142.87 dev tunl0
44.69.108.0/24 via 128.153.19.16 dev tunl0
44.24.115.0/24 via 66.80.67.210 dev tunl0
44.135.125.0/24 via 64.51.9.100 dev tunl0
44.165.146.0/24 via 157.25.152.61 dev tunl0
44.134.241.0/24 via 193.205.128.28 dev tunl0
44.152.0.0/24 via 150.188.8.195 dev tunl0
44.130.6.0/24 via 193.175.191.244 dev tunl0
44.72.21.0/24 via 64.81.142.87 dev tunl0
44.129.30.0/24 via 219.166.7.202 dev tunl0
44.134.38.0/24 via 212.239.60.180 dev tunl0
44.165.38.0/24 via 195.117.33.22 dev tunl0
44.165.54.0/24 via 80.48.40.10 dev tunl0
44.131.63.0/24 via 193.237.122.245 dev tunl0
44.163.68.0/24 via 206.48.254.149 dev tunl0
44.165.69.0/24 via 212.244.162.144 dev tunl0
44.135.93.0/24 via 149.99.17.253 dev tunl0
44.135.124.0/24 via 142.222.41.251 dev tunl0
44.177.134.0/24 via 193.109.180.235 dev tunl0
44.130.146.0/24 via 217.160.131.83 dev tunl0
44.165.147.0/24 via 212.87.235.47 dev tunl0
44.136.210.0/24 via 203.59.246.134 dev tunl0
44.134.224.0/24 via 80.17.241.137 dev tunl0
44.136.227.0/24 via 203.52.139.138 dev tunl0
44.134.240.0/24 via 193.205.128.28 dev tunl0
44.152.3.0/24 via 150.188.8.195 dev tunl0
44.185.3.0/24 via 213.174.5.180 dev tunl0
44.130.5.0/24 via 193.175.191.244 dev tunl0
44.136.7.0/24 via 10.23.76.195 dev tunl0
44.56.10.0/24 via 65.187.207.37 dev tunl0
44.165.20.0/24 via 195.205.158.53 dev tunl0
44.56.26.0/24 via 216.157.236.10 dev tunl0
44.4.36.0/24 via 131.161.252.211 dev tunl0
44.174.47.0/24 via 200.168.235.69 dev tunl0
44.72.68.0/24 via 64.81.142.87 dev tunl0
44.165.70.0/24 via 213.184.16.200 dev tunl0
44.177.114.0/24 via 193.179.113.7 dev tunl0
44.165.144.0/24 via 157.158.189.199 dev tunl0
44.131.168.0/24 via 193.237.122.245 dev tunl0
44.136.224.0/24 via 203.31.212.141 dev tunl0
44.134.243.0/24 via 193.205.128.28 dev tunl0
44.185.2.0/24 via 195.96.250.222 dev tunl0
44.26.3.0/24 via 66.169.235.135 dev tunl0
44.130.4.0/24 via 193.175.191.244 dev tunl0
44.72.7.0/24 via 64.81.142.87 dev tunl0
44.173.7.0/24 via 148.223.34.131 dev tunl0
44.133.13.0/24 via 213.194.156.226 dev tunl0
44.174.31.0/24 via 200.18.12.100 dev tunl0
44.165.71.0/24 via 217.97.170.25 dev tunl0
44.135.95.0/24 via 149.99.17.253 dev tunl0
44.142.131.0/24 via 193.192.23.100 dev tunl0
44.134.242.0/24 via 193.205.128.28 dev tunl0
44.188.48.0/23 via 213.219.68.226 dev tunl0
44.124.66.0/23 via 206.30.148.164 dev tunl0
44.165.154.0/23 via 149.156.70.62 dev tunl0
44.154.72.0/23 via 213.5.193.22 dev tunl0
44.165.152.0/23 via 195.150.10.251 dev tunl0
44.134.64.0/23 via 80.17.125.140 dev tunl0
44.177.146.0/23 via 195.47.60.30 dev tunl0
44.131.236.0/23 via 132.185.132.250 dev tunl0
44.6.0.0/23 via 216.157.236.10 dev tunl0
44.165.48.0/23 via 150.254.6.245 dev tunl0
44.165.114.0/23 via 212.51.209.174 dev tunl0
44.134.36.0/23 via 80.207.156.205 dev tunl0
44.136.8.0/23 via 203.41.101.121 dev tunl0
44.165.42.0/23 via 212.160.50.131 dev tunl0
44.165.104.0/23 via 217.99.254.211 dev tunl0
44.131.150.0/23 via 158.152.89.147 dev tunl0
44.131.148.0/23 via 62.172.121.94 dev tunl0
44.136.136.0/23 via 210.49.240.191 dev tunl0
44.136.168.0/23 via 203.31.210.27 dev tunl0
44.124.18.0/23 via 206.30.148.164 dev tunl0
44.165.44.0/23 via 212.160.50.131 dev tunl0
44.138.48.0/23 via 199.203.139.35 dev tunl0
44.134.112.0/23 via 147.163.7.250 dev tunl0
44.135.188.0/23 via 137.82.216.4 dev tunl0
44.131.154.0/23 via 132.185.132.250 dev tunl0
44.88.12.0/22 via 64.51.9.100 dev tunl0
44.131.32.0/22 via 148.88.3.17 dev tunl0
44.88.8.0/22 via 65.126.240.2 dev tunl0
44.153.124.0/22 via 170.210.225.254 dev tunl0
44.70.244.0/22 via 150.134.40.1 dev tunl0
44.153.160.0/22 via 200.45.185.129 dev tunl0
44.136.172.0/22 via 202.12.89.9 dev tunl0
44.48.0.0/22 via 129.79.16.175 dev tunl0
44.131.176.0/22 via 132.185.132.250 dev tunl0
44.177.224.0/22 via 193.165.65.140 dev tunl0
44.16.0.0/22 via 216.157.236.10 dev tunl0
44.134.144.0/22 via 213.254.10.100 dev tunl0
44.70.220.0/22 via 150.134.40.1 dev tunl0
44.48.48.0/22 via 209.224.158.17 dev tunl0
44.139.8.0/22 via 130.233.19.186 dev tunl0
44.137.24.0/22 via 131.155.192.172 dev tunl0
44.88.36.0/22 via 65.126.240.2 dev tunl0
44.136.144.0/22 via 203.31.210.27 dev tunl0
44.153.156.0/22 via 200.16.245.244 dev tunl0
44.177.212.0/22 via 193.165.65.140 dev tunl0
44.136.72.0/22 via 203.42.125.90 dev tunl0
44.136.140.0/22 via 203.31.210.27 dev tunl0
44.134.124.0/22 via 195.223.209.59 dev tunl0
44.131.144.0/22 via 62.172.121.94 dev tunl0
44.136.200.0/22 via 202.12.89.9 dev tunl0
44.131.156.0/22 via 132.185.132.250 dev tunl0
44.131.96.0/21 via 148.88.3.17 dev tunl0
44.88.0.0/21 via 64.51.9.100 dev tunl0
44.153.32.0/21 via 200.59.128.92 dev tunl0
44.88.40.0/21 via 64.51.9.100 dev tunl0
44.131.64.0/21 via 148.88.3.17 dev tunl0
44.180.240.0/21 via 195.66.179.242 dev tunl0
44.136.0.0/21 via 203.5.58.162 dev tunl0
44.136.128.0/21 via 210.49.240.191 dev tunl0
44.98.24.0/21 via 209.216.71.85 dev tunl0
44.130.56.0/21 via 141.75.24.78 dev tunl0
44.80.16.0/21 via 204.183.201.225 dev tunl0
44.135.32.0/21 via 24.138.74.225 dev tunl0
44.48.32.0/21 via 209.224.158.17 dev tunl0
44.136.72.0/21 via 210.49.240.191 dev tunl0
44.136.192.0/21 via 202.12.89.9 dev tunl0
44.175.16.0/20 via 216.157.236.10 dev tunl0
44.131.112.0/20 via 148.88.3.17 dev tunl0
44.153.160.0/20 via 200.16.245.244 dev tunl0
44.163.32.0/20 via 163.178.88.12 dev tunl0
44.136.80.0/20 via 210.49.240.191 dev tunl0
44.163.16.0/20 via 200.46.129.3 dev tunl0
44.188.224.0/20 via 217.9.2.6 dev tunl0
44.136.176.0/20 via 202.12.89.9 dev tunl0
44.88.16.0/20 via 65.126.240.2 dev tunl0
44.131.240.0/20 via 132.185.132.250 dev tunl0
44.80.0.0/20 via 204.183.201.225 dev tunl0
44.134.128.0/20 via 213.254.10.100 dev tunl0
44.153.96.0/20 via 168.96.255.2 dev tunl0
44.124.64.0/20 via 206.197.43.250 dev tunl0
44.131.128.0/20 via 62.172.121.94 dev tunl0
44.163.128.0/20 via 216.152.171.22 dev tunl0
44.134.160.0/20 via 213.254.10.100 dev tunl0
44.153.64.0/20 via 168.96.255.2 dev tunl0
44.153.192.0/19 via 168.96.255.2 dev tunl0
44.136.96.0/19 via 210.49.240.191 dev tunl0
44.156.0.0/19 via 148.6.80.11 dev tunl0
44.104.0.0/18 via 216.157.236.10 dev tunl0
44.65.0.0/18 via 216.157.236.10 dev tunl0
44.62.64.0/18 via 216.54.58.49 dev tunl0
44.64.0.0/18 via 216.157.236.10 dev tunl0
44.154.0.0/18 via 194.219.59.34 dev tunl0
44.22.0.0/18 via 209.112.166.46 dev tunl0
44.44.0.0/18 via 64.51.9.100 dev tunl0
44.153.0.0/18 via 168.96.255.2 dev tunl0
44.118.0.0/18 via 64.51.9.100 dev tunl0
44.66.0.0/18 via 216.157.236.10 dev tunl0
44.68.0.0/17 via 216.157.236.10 dev tunl0
44.120.0.0/16 via 207.228.6.167 dev tunl0
44.24.0.0/16 via 66.114.139.158 dev tunl0
44.156.0.0/16 via 152.66.0.109 dev tunl0
44.170.0.0/16 via 161.53.16.178 dev tunl0
44.94.0.0/16 via 141.224.128.8 dev tunl0
44.18.0.0/16 via 208.179.97.197 dev tunl0
44.17.0.0/16 via 209.221.203.114 dev tunl0
44.147.0.0/16 via 142.222.41.251 dev tunl0
44.178.0.0/16 via 194.87.1.92 dev tunl0
44.129.0.0/16 via 202.232.96.43 dev tunl0
44.144.0.0/16 via 134.58.250.65 dev tunl0
44.161.0.0/16 via 193.168.82.17 dev tunl0
44.177.0.0/16 via 195.113.115.135 dev tunl0
127.0.0.0/8 dev lo scope link
44.0.0.0/8 via 128.54.16.18 dev tunl0
default via 24.224.173.1 dev eth0
-------------- next part --------------
##############################################################################
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL
# PORT PORT(S) DEST
#
# Accept DNS connections from the firewall to the network
#
ACCEPT fw net tcp 53
ACCEPT fw net udp 53
#
# Accept Samba connections
#
ACCEPT fw loc udp 137:139
ACCEPT fw loc tcp 137,139
ACCEPT fw loc udp 1024: 137
ACCEPT loc fw udp 137:139
ACCEPT loc fw tcp 137,139
ACCEPT loc fw udp 1024: 137
#
# Accept SSH and Telnet connections to and from the local network for
administration
#
ACCEPT loc fw tcp 22,23,24
ACCEPT net fw tcp 22,23,24
# Accept pings from anyone
ACCEPT loc fw icmp 8
ACCEPT net fw icmp 8
#
#DNAT net loc:192.168.0.147 tcp 21:24
DNAT net loc:192.168.0.147 tcp 21 - 24.224.173.220
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
-------------- next part --------------
[H[JShorewall-1.3.14 Status at linux.ve1drg.ampr.org - Fri Apr 11 08:23:45 ADT
2003
Counters reset Fri Apr 11 08:23:32 ADT 2003
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
7 2072 eth0_in all -- eth0 * 0.0.0.0/0 0.0.0.0/0
0 0 eth1_in all -- eth1 * 0.0.0.0/0 0.0.0.0/0
7 1932 tunl_in all -- tunl+ * 0.0.0.0/0 0.0.0.0/0
0 0 common all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:INPUT:REJECT:''
0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 eth0_fwd all -- eth0 * 0.0.0.0/0 0.0.0.0/0
0 0 eth1_fwd all -- eth1 * 0.0.0.0/0 0.0.0.0/0
0 0 tunl_fwd all -- tunl+ * 0.0.0.0/0 0.0.0.0/0
0 0 common all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:FORWARD:REJECT:''
0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT udp -- * eth0 0.0.0.0/0 0.0.0.0/0
udp dpts:67:68
0 0 ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
13 2073 fw2net all -- * eth0 0.0.0.0/0 0.0.0.0/0
0 0 fw2loc all -- * eth1 0.0.0.0/0 0.0.0.0/0
7 1693 fw2peers all -- * tunl+ 0.0.0.0/0 0.0.0.0/0
0 0 common all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:OUTPUT:REJECT:''
0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0
Chain all2all (6 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 common all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:all2all:REJECT:''
0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0
Chain blacklst (2 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- * * 213.254.3.11 0.0.0.0/0
LOG flags 0 level 7 prefix `Shorewall:blacklst:DROP:''
0 0 DROP all -- * * 213.254.3.11 0.0.0.0/0
0 0 LOG all -- * * 212.244.88.28 0.0.0.0/0
LOG flags 0 level 7 prefix `Shorewall:blacklst:DROP:''
0 0 DROP all -- * * 212.244.88.28 0.0.0.0/0
0 0 LOG all -- * * 212.188.65.140 0.0.0.0/0
LOG flags 0 level 7 prefix `Shorewall:blacklst:DROP:''
0 0 DROP all -- * * 212.188.65.140 0.0.0.0/0
0 0 LOG all -- * * 44.177.214.253 0.0.0.0/0
LOG flags 0 level 7 prefix `Shorewall:blacklst:DROP:''
0 0 DROP all -- * * 44.177.214.253 0.0.0.0/0
0 0 LOG all -- * * 44.130.55.100 0.0.0.0/0
LOG flags 0 level 7 prefix `Shorewall:blacklst:DROP:''
0 0 DROP all -- * * 44.130.55.100 0.0.0.0/0
0 0 LOG all -- * * 44.161.1.100 0.0.0.0/0
LOG flags 0 level 7 prefix `Shorewall:blacklst:DROP:''
0 0 DROP all -- * * 44.161.1.100 0.0.0.0/0
0 0 LOG all -- * * 66.220.17.0/24 0.0.0.0/0
LOG flags 0 level 7 prefix `Shorewall:blacklst:DROP:''
0 0 DROP all -- * * 66.220.17.0/24 0.0.0.0/0
0 0 LOG all -- * * 66.115.177.0/24 0.0.0.0/0
LOG flags 0 level 7 prefix `Shorewall:blacklst:DROP:''
0 0 DROP all -- * * 66.115.177.0/24 0.0.0.0/0
Chain common (5 references)
pkts bytes target prot opt in out source destination
0 0 icmpdef icmp -- * * 0.0.0.0/0 0.0.0.0/0
0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0
state INVALID
0 0 REJECT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpts:137:139 reject-with icmp-port-unreachable
0 0 REJECT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:445 reject-with icmp-port-unreachable
0 0 reject tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:135
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpt:1900
0 0 DROP all -- * * 0.0.0.0/0
255.255.255.255
0 0 DROP all -- * * 0.0.0.0/0 224.0.0.0/4
0 0 reject tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:113
0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0
udp spt:53 state NEW
0 0 DROP all -- * * 0.0.0.0/0
24.224.173.255
0 0 DROP all -- * * 0.0.0.0/0
192.168.0.255
Chain dynamic (6 references)
pkts bytes target prot opt in out source destination
Chain eth0_fwd (1 references)
pkts bytes target prot opt in out source destination
0 0 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 rfc1918 all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 blacklst all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 net2loc all -- * eth1 0.0.0.0/0 0.0.0.0/0
0 0 net2all all -- * tunl+ 0.0.0.0/0 0.0.0.0/0
Chain eth0_in (1 references)
pkts bytes target prot opt in out source destination
7 2072 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
udp dpts:67:68
7 2072 rfc1918 all -- * * 0.0.0.0/0 0.0.0.0/0
7 2072 blacklst all -- * * 0.0.0.0/0 0.0.0.0/0
7 2072 net2fw all -- * * 0.0.0.0/0 0.0.0.0/0
Chain eth1_fwd (1 references)
pkts bytes target prot opt in out source destination
0 0 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 loc2net all -- * eth0 0.0.0.0/0 0.0.0.0/0
0 0 all2all all -- * tunl+ 0.0.0.0/0 0.0.0.0/0
Chain eth1_in (1 references)
pkts bytes target prot opt in out source destination
0 0 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 loc2fw all -- * * 0.0.0.0/0 0.0.0.0/0
Chain fw2loc (1 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW udp dpts:137:139
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:137
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:139
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW udp spt:137 dpts:1024:65535
0 0 all2all all -- * * 0.0.0.0/0 0.0.0.0/0
Chain fw2net (1 references)
pkts bytes target prot opt in out source destination
7 1065 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:53
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW udp dpt:53
6 1008 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain fw2peers (1 references)
pkts bytes target prot opt in out source destination
4 865 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
3 828 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain icmpdef (1 references)
pkts bytes target prot opt in out source destination
Chain loc2fw (1 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW udp dpts:137:139
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:137
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:139
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW udp spt:137 dpts:1024:65535
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:22
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:23
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:24
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 all2all all -- * * 0.0.0.0/0 0.0.0.0/0
Chain loc2net (1 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain logdrop (27 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:rfc1918:DROP:''
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain net2all (3 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 common all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:net2all:DROP:''
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain net2fw (1 references)
pkts bytes target prot opt in out source destination
7 2072 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:22
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:23
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp dpt:24
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
icmp type 8
0 0 net2all all -- * * 0.0.0.0/0 0.0.0.0/0
Chain net2loc (1 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT tcp -- * * 0.0.0.0/0
192.168.0.147 state NEW tcp dpt:21
0 0 net2all all -- * * 0.0.0.0/0 0.0.0.0/0
Chain newnotsyn (10 references)
pkts bytes target prot opt in out source destination
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain peers2fw (1 references)
pkts bytes target prot opt in out source destination
7 1932 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
state RELATED,ESTABLISHED
0 0 newnotsyn tcp -- * * 0.0.0.0/0 0.0.0.0/0
state NEW tcp flags:!0x16/0x02
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain reject (6 references)
pkts bytes target prot opt in out source destination
0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0
reject-with tcp-reset
0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0
reject-with icmp-port-unreachable
Chain rfc1918 (2 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- * * 255.255.255.255 0.0.0.0/0
0 0 DROP all -- * * 169.254.0.0/16 0.0.0.0/0
0 0 logdrop all -- * * 172.16.0.0/12 0.0.0.0/0
0 0 logdrop all -- * * 192.0.2.0/24 0.0.0.0/0
0 0 logdrop all -- * * 192.168.0.0/16 0.0.0.0/0
0 0 logdrop all -- * * 0.0.0.0/7 0.0.0.0/0
0 0 logdrop all -- * * 2.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 5.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 7.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 10.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 23.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 27.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 31.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 36.0.0.0/7 0.0.0.0/0
0 0 logdrop all -- * * 39.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 41.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 42.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 58.0.0.0/7 0.0.0.0/0
0 0 logdrop all -- * * 60.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 70.0.0.0/7 0.0.0.0/0
0 0 logdrop all -- * * 72.0.0.0/5 0.0.0.0/0
0 0 logdrop all -- * * 83.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 84.0.0.0/6 0.0.0.0/0
0 0 logdrop all -- * * 88.0.0.0/5 0.0.0.0/0
0 0 logdrop all -- * * 96.0.0.0/3 0.0.0.0/0
0 0 logdrop all -- * * 127.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 197.0.0.0/8 0.0.0.0/0
0 0 logdrop all -- * * 222.0.0.0/7 0.0.0.0/0
0 0 logdrop all -- * * 240.0.0.0/4 0.0.0.0/0
Chain shorewall (0 references)
pkts bytes target prot opt in out source destination
Chain tunl_fwd (1 references)
pkts bytes target prot opt in out source destination
0 0 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 all2all all -- * eth0 0.0.0.0/0 0.0.0.0/0
0 0 all2all all -- * eth1 0.0.0.0/0 0.0.0.0/0
0 0 all2all all -- * tunl+ 0.0.0.0/0 0.0.0.0/0
Chain tunl_in (1 references)
pkts bytes target prot opt in out source destination
7 1932 dynamic all -- * * 0.0.0.0/0 0.0.0.0/0
7 1932 peers2fw all -- * * 0.0.0.0/0 0.0.0.0/0
NAT Table
Chain PREROUTING (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 net_dnat all -- eth0 * 0.0.0.0/0 0.0.0.0/0
Chain POSTROUTING (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 eth0_masq all -- * eth0 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain eth0_masq (1 references)
pkts bytes target prot opt in out source destination
0 0 MASQUERADE all -- * * 192.168.0.0/24 0.0.0.0/0
Chain net_dnat (1 references)
pkts bytes target prot opt in out source destination
0 0 DNAT tcp -- * * 0.0.0.0/0
24.224.173.220 tcp dpt:21 to:192.168.0.147
Mangle Table
Chain PREROUTING (policy ACCEPT 14 packets, 4004 bytes)
pkts bytes target prot opt in out source destination
7 2072 man1918 all -- eth0 * 0.0.0.0/0 0.0.0.0/0
14 4004 pretos all -- * * 0.0.0.0/0 0.0.0.0/0
Chain INPUT (policy ACCEPT 14 packets, 4004 bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 20 packets, 3766 bytes)
pkts bytes target prot opt in out source destination
20 3766 outtos all -- * * 0.0.0.0/0 0.0.0.0/0
Chain POSTROUTING (policy ACCEPT 20 packets, 3766 bytes)
pkts bytes target prot opt in out source destination
Chain logdrop (27 references)
pkts bytes target prot opt in out source destination
0 0 LOG all -- * * 0.0.0.0/0 0.0.0.0/0
LOG flags 0 level 6 prefix `Shorewall:man1918:DROP:''
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain man1918 (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- * * 0.0.0.0/0
255.255.255.255
0 0 DROP all -- * * 0.0.0.0/0
169.254.0.0/16
0 0 logdrop all -- * * 0.0.0.0/0
172.16.0.0/12
0 0 logdrop all -- * * 0.0.0.0/0 192.0.2.0/24
0 0 logdrop all -- * * 0.0.0.0/0
192.168.0.0/16
0 0 logdrop all -- * * 0.0.0.0/0 0.0.0.0/7
0 0 logdrop all -- * * 0.0.0.0/0 2.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 5.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 7.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 10.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 23.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 27.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 31.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 36.0.0.0/7
0 0 logdrop all -- * * 0.0.0.0/0 39.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 41.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 42.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 58.0.0.0/7
0 0 logdrop all -- * * 0.0.0.0/0 60.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 70.0.0.0/7
0 0 logdrop all -- * * 0.0.0.0/0 72.0.0.0/5
0 0 logdrop all -- * * 0.0.0.0/0 83.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 84.0.0.0/6
0 0 logdrop all -- * * 0.0.0.0/0 88.0.0.0/5
0 0 logdrop all -- * * 0.0.0.0/0 96.0.0.0/3
0 0 logdrop all -- * * 0.0.0.0/0 127.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 197.0.0.0/8
0 0 logdrop all -- * * 0.0.0.0/0 222.0.0.0/7
0 0 logdrop all -- * * 0.0.0.0/0 240.0.0.0/4
Chain outtos (1 references)
pkts bytes target prot opt in out source destination
0 0 TOS tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:22 TOS set 0x10
0 0 TOS tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp spt:22 TOS set 0x10
0 0 TOS tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:21 TOS set 0x10
0 0 TOS tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp spt:21 TOS set 0x10
0 0 TOS tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp spt:20 TOS set 0x08
0 0 TOS tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:20 TOS set 0x08
Chain pretos (1 references)
pkts bytes target prot opt in out source destination
0 0 TOS tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:22 TOS set 0x10
0 0 TOS tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp spt:22 TOS set 0x10
0 0 TOS tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:21 TOS set 0x10
0 0 TOS tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp spt:21 TOS set 0x10
0 0 TOS tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp spt:20 TOS set 0x08
0 0 TOS tcp -- * * 0.0.0.0/0 0.0.0.0/0
tcp dpt:20 TOS set 0x08
unknown 93 599 src=44.135.34.201 dst=44.135.34.4 src=44.135.34.4
dst=44.135.34.201 use=1
tcp 6 431813 ESTABLISHED src=192.168.0.147 dst=207.46.106.121 sport=3011
dport=1863 src=207.46.106.121 dst=24.224.173.220 sport=1863 dport=3011 [ASSURED]
use=1
unknown 4 598 src=24.224.173.220 dst=128.54.16.18 [UNREPLIED] src=128.54.16.18
dst=24.224.173.220 use=1
unknown 4 599 src=24.224.173.220 dst=24.138.74.225 src=24.138.74.225
dst=24.224.173.220 use=2
unknown 93 598 src=44.135.34.201 dst=44.137.28.48 [UNREPLIED] src=44.137.28.48
dst=44.135.34.201 use=1
-------------- next part --------------
##############################################################################
#INTERFACE SUBNET ADDRESS
eth0 eth1
#LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE