File: conntrack.result

package info (click to toggle)

ferm 2.7-2

links: PTS, VCS
area: main
in suites: forky, sid
size: 2,140 kB
sloc: perl: 2,839; sh: 126; makefile: 120

file content (12 lines) | stat: -rw-r--r-- 845 bytes

parent folder | download | duplicates (4)

iptables -t filter -A INPUT -m conntrack --ctstate INVALID -j DROP
iptables -t filter -A INPUT -m conntrack --ctstate DNAT,SNAT -j REJECT
iptables -t filter -A INPUT -m conntrack --ctproto ftp -j ACCEPT
iptables -t filter -A INPUT -m conntrack --ctorigsrc 10.0.0.0/8 -j ACCEPT
iptables -t filter -A INPUT -m conntrack --ctorigdst 127.0.0.01 -j ACCEPT
iptables -t filter -A INPUT -m conntrack ! --ctreplsrc 1.2.3.3 -j ACCEPT
iptables -t filter -A INPUT -m conntrack ! --ctreplsrc 1.2.3.4 -j ACCEPT
iptables -t filter -A INPUT -m conntrack --ctrepldst 1.2.3.5 -j REJECT
iptables -t filter -A INPUT -m conntrack --ctrepldst 1.2.3.6 -j REJECT
iptables -t filter -A INPUT -m conntrack --ctstatus ASSURED -j ACCEPT
iptables -t filter -A INPUT -m conntrack --ctstatus EXPECTED -j ACCEPT
iptables -t filter -A INPUT -m conntrack --ctexpire 10 -j ACCEPT