Results 1 to 7 of 7
-
08-15-2007, 08:21 AM #1Web Hosting Guru
- Join Date
- Feb 2007
- Posts
- 327
run iptables --flush and down server
Hello
wil ltime i run iptables --flush my server go to full down
and must go to restart
whats problem?Soon ...
-
08-15-2007, 12:14 PM #2Web Hosting Master
- Join Date
- Nov 2001
- Location
- Philadelphia, Pa
- Posts
- 948
You likely have your default INPUT policy to drop. When you flush iptables, it doesn't change the default policy, so the default remains drop, but there are no exceptions.
Rather than set the default policy to drop, forward all onto a new chain, then make the last line in the new chain make it a -j REJECT --reject-with icmp-host-prohibited
This way, any traffic that doesn't match the above exceptions will be dropped, but if you flush iptables you won't be locked out.
-
08-15-2007, 12:32 PM #3Web Hosting Guru
- Join Date
- Feb 2007
- Posts
- 327
Hello
i`m sorry
i don`t understand.
i have csf
will time i click on "Display the active iptables rules"
show very ip
i want deleted all the ip
do you can all ip saved in where?
where file or ...?
ThanksSoon ...
-
08-15-2007, 12:45 PM #4Web Hosting Master
- Join Date
- Apr 2004
- Location
- Singapore
- Posts
- 1,522
-
08-15-2007, 12:53 PM #5Web Hosting Guru
- Join Date
- Feb 2007
- Posts
- 327
Code:ConfigServer Security & Firewall - csf v2.88 Show csf status... Chain INPUT (policy DROP 0 packets, 0 bytes) num pkts bytes target prot opt in out source destination 1 266K 89M acctboth all -- * * 0.0.0.0/0 0.0.0.0/0 2 2 120 DROP all -- !lo * 212.72.183.160 0.0.0.0/0 3 30 12024 DROP all -- !lo * 85.133.180.157 0.0.0.0/0 4 8 480 DROP all -- !lo * 83.217.84.73 0.0.0.0/0 5 0 0 DROP all -- !lo * 81.214.166.74 0.0.0.0/0 6 8 416 DROP all -- !lo * 193.33.98.220 0.0.0.0/0 7 886 54965 DROP all -- !lo * 66.249.67.105 0.0.0.0/0 8 6 360 DROP all -- !lo * 85.17.145.51 0.0.0.0/0 9 11 588 DROP all -- !lo * 80.237.162.232 0.0.0.0/0 10 15961 3263K ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0 11 4335 274K INVDROP all -- !lo * 0.0.0.0/0 0.0.0.0/0 state INVALID 12 0 0 INVDROP tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x00 13 0 0 INVDROP tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x3F 14 0 0 INVDROP tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x03/0x03 15 0 0 INVDROP tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x06 16 0 0 INVDROP tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x05/0x05 17 0 0 INVDROP tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x11/0x01 18 0 0 INVDROP tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x18/0x08 19 0 0 INVDROP tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x30/0x20 20 245K 85M DSHIELD all -- !lo * 0.0.0.0/0 0.0.0.0/0 21 245K 85M SPAMHAUS all -- !lo * 0.0.0.0/0 0.0.0.0/0 22 223K 84M ACCEPT all -- !lo * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED 23 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:20 24 33 1600 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:21 25 5 240 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22 26 273 13540 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:25 27 4 160 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:53 28 13138 707K ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:80 29 15 720 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:110 30 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:143 31 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:443 32 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:465 33 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:953 34 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:993 35 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:995 36 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:2077 37 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:2078 38 681 32712 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:2082 39 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:2083 40 30 1440 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:2086 41 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:2087 42 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:2095 43 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:2096 44 0 0 ACCEPT udp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:20 45 0 0 ACCEPT udp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:21 46 5719 396K ACCEPT udp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:53 47 0 0 ACCEPT udp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:953 48 943 55568 ACCEPT icmp -- !lo * 0.0.0.0/0 0.0.0.0/0 state NEW icmp type 8 49 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 tcp spt:53 dpt:53 50 0 0 ACCEPT udp -- !lo * 0.0.0.0/0 0.0.0.0/0 udp spt:53 dpt:53 51 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 tcp spt:53 dpts:1024:65535 52 13 2595 ACCEPT udp -- !lo * 0.0.0.0/0 0.0.0.0/0 udp spt:53 dpts:1024:65535 53 0 0 ACCEPT tcp -- !lo * 0.0.0.0/0 0.0.0.0/0 tcp spts:1024:65535 dpt:53 54 0 0 ACCEPT udp -- !lo * 0.0.0.0/0 0.0.0.0/0 udp spts:1024:65535 dpt:53 55 184 29738 LOGDROPIN all -- * * 0.0.0.0/0 0.0.0.0/0 Chain FORWARD (policy DROP 0 packets, 0 bytes) num pkts bytes target prot opt in out source destination Chain OUTPUT (policy DROP 0 packets, 0 bytes) num pkts bytes target prot opt in out source destination 1 0 0 ACCEPT tcp -- * * 0.0.0.0/0 127.0.0.1 tcp dpt:25 OWNER UID match 32002 2 0 0 DROP all -- * !lo 0.0.0.0/0 212.72.183.160 3 22 9382 DROP all -- * !lo 0.0.0.0/0 85.133.180.157 4 0 0 DROP all -- * !lo 0.0.0.0/0 83.217.84.73 5 0 0 DROP all -- * !lo 0.0.0.0/0 81.214.166.74 6 8 5256 DROP all -- * !lo 0.0.0.0/0 193.33.98.220 7 9 468 DROP all -- * !lo 0.0.0.0/0 66.249.67.105 8 0 0 DROP all -- * !lo 0.0.0.0/0 85.17.145.51 9 8 416 DROP all -- * !lo 0.0.0.0/0 80.237.162.232 10 2934 347K ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 OWNER GID match 12 11 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 OWNER GID match 32001 12 117 6392 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 OWNER UID match 0 13 2153 88898 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 14 267K 180M acctboth all -- * * 0.0.0.0/0 0.0.0.0/0 15 15844 3257K ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0 16 156 33206 INVDROP all -- * !lo 0.0.0.0/0 0.0.0.0/0 state INVALID 17 0 0 INVDROP tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x00 18 0 0 INVDROP tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x3F 19 0 0 INVDROP tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 tcp flags:0x03/0x03 20 0 0 INVDROP tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x06 21 0 0 INVDROP tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 tcp flags:0x05/0x05 22 0 0 INVDROP tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 tcp flags:0x11/0x01 23 0 0 INVDROP tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 tcp flags:0x18/0x08 24 0 0 INVDROP tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 tcp flags:0x30/0x20 25 237K 175M ACCEPT all -- * !lo 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED 26 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:20 27 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:21 28 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22 29 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:25 30 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:37 31 13 780 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:43 32 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:53 33 966 57960 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:80 34 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:110 35 273 16380 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:113 36 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:443 37 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:587 38 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:873 39 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:953 40 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:2087 41 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:2089 42 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:2703 43 0 0 ACCEPT udp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:20 44 0 0 ACCEPT udp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:21 45 11694 833K ACCEPT udp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:53 46 0 0 ACCEPT udp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:113 47 0 0 ACCEPT udp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:123 48 0 0 ACCEPT udp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:873 49 0 0 ACCEPT udp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:953 50 0 0 ACCEPT udp -- * !lo 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:6277 51 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 tcp spt:53 dpt:53 52 0 0 ACCEPT udp -- * !lo 0.0.0.0/0 0.0.0.0/0 udp spt:53 dpt:53 53 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 tcp spts:1024:65535 dpt:53 54 0 0 ACCEPT udp -- * !lo 0.0.0.0/0 0.0.0.0/0 udp spts:1024:65535 dpt:53 55 0 0 ACCEPT tcp -- * !lo 0.0.0.0/0 0.0.0.0/0 tcp spt:53 dpts:1024:65535 56 0 0 ACCEPT udp -- * !lo 0.0.0.0/0 0.0.0.0/0 udp spt:53 dpts:1024:65535 57 389 554K LOGDROPOUT all -- * * 0.0.0.0/0 0.0.0.0/0 Chain DSHIELD (1 references) num pkts bytes target prot opt in out source destination 1 0 0 DROP all -- * * 61.128.122.0/24 0.0.0.0/0 2 0 0 DROP all -- * * 72.52.111.0/24 0.0.0.0/0 3 0 0 DROP all -- * * 201.198.194.0/24 0.0.0.0/0 4 0 0 DROP all -- * * 58.20.228.0/24 0.0.0.0/0 5 0 0 DROP all -- * * 216.128.67.0/24 0.0.0.0/0 6 2 808 DROP all -- * * 219.146.96.0/24 0.0.0.0/0 7 0 0 DROP all -- * * 221.195.73.0/24 0.0.0.0/0 8 0 0 DROP all -- * * 221.208.208.0/24 0.0.0.0/0 9 0 0 DROP all -- * * 58.225.98.0/24 0.0.0.0/0 10 0 0 DROP all -- * * 81.3.245.0/24 0.0.0.0/0 11 0 0 DROP all -- * * 58.244.205.0/24 0.0.0.0/0 12 7 6447 DROP all -- * * 218.27.148.0/24 0.0.0.0/0 13 0 0 DROP all -- * * 58.211.16.0/24 0.0.0.0/0 14 0 0 DROP all -- * * 125.232.108.0/24 0.0.0.0/0 15 0 0 DROP all -- * * 91.141.19.0/24 0.0.0.0/0 16 0 0 DROP all -- * * 139.55.35.0/24 0.0.0.0/0 17 0 0 DROP all -- * * 221.6.77.0/24 0.0.0.0/0 18 0 0 DROP all -- * * 69.254.20.0/24 0.0.0.0/0 19 0 0 DROP all -- * * 81.3.253.0/24 0.0.0.0/0 20 0 0 DROP all -- * * 81.3.254.0/24 0.0.0.0/0 Chain INVDROP (18 references) num pkts bytes target prot opt in out source destination 1 4491 308K DROP all -- * * 0.0.0.0/0 0.0.0.0/0 Chain LOGDROPIN (1 references) num pkts bytes target prot opt in out source destination 1 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:67 2 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:67 3 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:68 4 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:68 5 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:111 6 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:111 7 37 2052 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:113 8 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:113 9 22 1152 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpts:135:139 10 16 1248 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpts:135:139 11 10 512 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:445 12 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:445 13 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:513 14 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:513 15 0 0 DROP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:520 16 0 0 DROP udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:520 17 40 3111 LOG tcp -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_IN Blocked* ' 18 56 21519 LOG udp -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_IN Blocked* ' 19 0 0 LOG icmp -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_IN Blocked* ' 20 99 24774 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 Chain LOGDROPOUT (1 references) num pkts bytes target prot opt in out source destination 1 298 418K LOG tcp -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_OUT Blocked* ' 2 0 0 LOG udp -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_OUT Blocked* ' 3 0 0 LOG icmp -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_OUT Blocked* ' 4 389 554K DROP all -- * * 0.0.0.0/0 0.0.0.0/0 Chain SPAMHAUS (1 references) num pkts bytes target prot opt in out source destination 1 0 0 DROP all -- * * 91.146.64.0/18 0.0.0.0/0 2 0 0 DROP all -- * * 91.146.112.0/20 0.0.0.0/0 3 0 0 DROP all -- * * 89.35.0.0/23 0.0.0.0/0 4 0 0 DROP all -- * * 89.32.203.0/24 0.0.0.0/0 5 0 0 DROP all -- * * 89.233.64.0/18 0.0.0.0/0 6 0 0 DROP all -- * * 89.208.122.0/23 0.0.0.0/0 7 0 0 DROP all -- * * 89.187.192.0/19 0.0.0.0/0 8 0 0 DROP all -- * * 89.145.128.0/20 0.0.0.0/0 9 0 0 DROP all -- * * 88.206.80.0/20 0.0.0.0/0 10 0 0 DROP all -- * * 88.206.8.0/21 0.0.0.0/0 11 0 0 DROP all -- * * 88.206.64.0/20 0.0.0.0/0 12 0 0 DROP all -- * * 88.206.0.0/17 0.0.0.0/0 13 0 0 DROP all -- * * 88.206.0.0/21 0.0.0.0/0 14 0 0 DROP all -- * * 86.59.160.0/19 0.0.0.0/0 15 0 0 DROP all -- * * 86.59.128.0/17 0.0.0.0/0 16 0 0 DROP all -- * * 86.111.128.0/19 0.0.0.0/0 17 0 0 DROP all -- * * 86.105.230.0/24 0.0.0.0/0 18 111 7023 DROP all -- * * 85.255.112.0/20 0.0.0.0/0 19 0 0 DROP all -- * * 83.223.240.0/22 0.0.0.0/0 20 0 0 DROP all -- * * 83.223.224.0/19 0.0.0.0/0 21 0 0 DROP all -- * * 81.95.156.0/22 0.0.0.0/0 22 0 0 DROP all -- * * 81.95.144.0/20 0.0.0.0/0 23 0 0 DROP all -- * * 81.17.16.0/20 0.0.0.0/0 24 0 0 DROP all -- * * 80.71.64.0/19 0.0.0.0/0 25 0 0 DROP all -- * * 72.21.64.0/20 0.0.0.0/0 26 0 0 DROP all -- * * 72.21.128.0/20 0.0.0.0/0 27 0 0 DROP all -- * * 69.8.176.0/20 0.0.0.0/0 28 100 6611 DROP all -- * * 69.50.160.0/19 0.0.0.0/0 29 0 0 DROP all -- * * 69.50.16.0/20 0.0.0.0/0 30 0 0 DROP all -- * * 69.10.0.0/20 0.0.0.0/0 31 0 0 DROP all -- * * 66.64.96.0/20 0.0.0.0/0 32 0 0 DROP all -- * * 66.55.160.0/19 0.0.0.0/0 33 0 0 DROP all -- * * 66.37.112.0/20 0.0.0.0/0 34 0 0 DROP all -- * * 66.235.128.0/20 0.0.0.0/0 35 0 0 DROP all -- * * 66.185.112.0/20 0.0.0.0/0 36 0 0 DROP all -- * * 66.181.160.0/19 0.0.0.0/0 37 0 0 DROP all -- * * 66.110.72.0/24 0.0.0.0/0 38 0 0 DROP all -- * * 66.102.32.0/20 0.0.0.0/0 39 0 0 DROP all -- * * 65.255.32.0/20 0.0.0.0/0 40 0 0 DROP all -- * * 65.182.128.0/20 0.0.0.0/0 41 0 0 DROP all -- * * 64.28.176.0/20 0.0.0.0/0 42 0 0 DROP all -- * * 64.255.128.0/19 0.0.0.0/0 43 0 0 DROP all -- * * 64.18.240.0/20 0.0.0.0/0 44 0 0 DROP all -- * * 63.246.32.0/20 0.0.0.0/0 45 0 0 DROP all -- * * 59.191.96.0/19 0.0.0.0/0 46 0 0 DROP all -- * * 58.83.4.0/22 0.0.0.0/0 47 0 0 DROP all -- * * 58.83.12.0/22 0.0.0.0/0 48 0 0 DROP all -- * * 58.83.0.0/16 0.0.0.0/0 49 0 0 DROP all -- * * 58.83.0.0/22 0.0.0.0/0 50 0 0 DROP all -- * * 58.65.238.0/23 0.0.0.0/0 51 0 0 DROP all -- * * 217.69.112.0/20 0.0.0.0/0 52 111 7019 DROP all -- * * 216.255.176.0/20 0.0.0.0/0 53 0 0 DROP all -- * * 216.243.240.0/20 0.0.0.0/0 54 0 0 DROP all -- * * 216.211.144.0/20 0.0.0.0/0 55 0 0 DROP all -- * * 216.16.128.0/18 0.0.0.0/0 56 0 0 DROP all -- * * 216.130.192.0/19 0.0.0.0/0 57 0 0 DROP all -- * * 216.108.224.0/20 0.0.0.0/0 58 0 0 DROP all -- * * 209.203.160.0/20 0.0.0.0/0 59 0 0 DROP all -- * * 209.197.192.0/19 0.0.0.0/0 60 0 0 DROP all -- * * 209.165.224.0/20 0.0.0.0/0 61 56 6949 DROP all -- * * 208.64.44.0/22 0.0.0.0/0 62 0 0 DROP all -- * * 207.191.160.0/20 0.0.0.0/0 63 0 0 DROP all -- * * 206.81.80.0/20 0.0.0.0/0 64 0 0 DROP all -- * * 206.197.99.0/24 0.0.0.0/0 65 0 0 DROP all -- * * 206.197.29.0/24 0.0.0.0/0 66 0 0 DROP all -- * * 206.197.28.0/24 0.0.0.0/0 67 0 0 DROP all -- * * 206.197.177.0/24 0.0.0.0/0 68 0 0 DROP all -- * * 206.197.176.0/24 0.0.0.0/0 69 0 0 DROP all -- * * 206.197.175.0/24 0.0.0.0/0 70 0 0 DROP all -- * * 206.197.134.0/24 0.0.0.0/0 71 0 0 DROP all -- * * 205.236.189.0/24 0.0.0.0/0 72 0 0 DROP all -- * * 205.235.64.0/20 0.0.0.0/0 73 0 0 DROP all -- * * 205.210.137.0/24 0.0.0.0/0 74 0 0 DROP all -- * * 205.172.188.0/22 0.0.0.0/0 75 0 0 DROP all -- * * 204.89.224.0/24 0.0.0.0/0 76 0 0 DROP all -- * * 204.89.156.0/23 0.0.0.0/0 77 0 0 DROP all -- * * 204.62.213.0/24 0.0.0.0/0 78 0 0 DROP all -- * * 204.52.255.0/24 0.0.0.0/0 79 0 0 DROP all -- * * 204.236.0.0/19 0.0.0.0/0 80 0 0 DROP all -- * * 204.14.24.0/21 0.0.0.0/0 81 0 0 DROP all -- * * 204.14.0.0/21 0.0.0.0/0 82 0 0 DROP all -- * * 204.13.32.0/21 0.0.0.0/0 83 0 0 DROP all -- * * 204.10.176.0/21 0.0.0.0/0 84 0 0 DROP all -- * * 203.82.16.0/21 0.0.0.0/0 85 0 0 DROP all -- * * 203.55.153.0/24 0.0.0.0/0 86 0 0 DROP all -- * * 203.4.142.0/24 0.0.0.0/0 87 0 0 DROP all -- * * 203.4.141.0/24 0.0.0.0/0 88 0 0 DROP all -- * * 203.34.71.0/24 0.0.0.0/0 89 0 0 DROP all -- * * 203.34.70.0/24 0.0.0.0/0 90 0 0 DROP all -- * * 203.34.205.0/24 0.0.0.0/0 91 0 0 DROP all -- * * 203.34.204.0/24 0.0.0.0/0 92 0 0 DROP all -- * * 203.34.192.0/23 0.0.0.0/0 93 0 0 DROP all -- * * 203.33.120.0/24 0.0.0.0/0 94 0 0 DROP all -- * * 203.31.88.0/23 0.0.0.0/0 95 0 0 DROP all -- * * 203.19.101.0/24 0.0.0.0/0 96 0 0 DROP all -- * * 202.62.252.0/24 0.0.0.0/0 97 0 0 DROP all -- * * 202.14.69.0/24 0.0.0.0/0 98 0 0 DROP all -- * * 201.71.0.0/20 0.0.0.0/0 99 0 0 DROP all -- * * 200.124.64.0/20 0.0.0.0/0 100 0 0 DROP all -- * * 200.108.160.0/20 0.0.0.0/0 101 0 0 DROP all -- * * 199.60.102.0/24 0.0.0.0/0 102 0 0 DROP all -- * * 199.248.213.0/24 0.0.0.0/0 103 0 0 DROP all -- * * 199.245.138.0/24 0.0.0.0/0 104 0 0 DROP all -- * * 199.201.152.0/24 0.0.0.0/0 105 0 0 DROP all -- * * 199.201.151.0/24 0.0.0.0/0 106 0 0 DROP all -- * * 199.166.200.0/22 0.0.0.0/0 107 0 0 DROP all -- * * 199.120.163.0/24 0.0.0.0/0 108 0 0 DROP all -- * * 198.204.0.0/21 0.0.0.0/0 109 0 0 DROP all -- * * 198.186.16.0/20 0.0.0.0/0 110 0 0 DROP all -- * * 198.151.152.0/22 0.0.0.0/0 111 0 0 DROP all -- * * 196.4.167.0/24 0.0.0.0/0 112 0 0 DROP all -- * * 195.95.161.0/24 0.0.0.0/0 113 0 0 DROP all -- * * 195.74.88.0/23 0.0.0.0/0 114 0 0 DROP all -- * * 195.64.162.0/23 0.0.0.0/0 115 0 0 DROP all -- * * 195.248.83.0/24 0.0.0.0/0 116 0 0 DROP all -- * * 195.206.120.0/22 0.0.0.0/0 117 0 0 DROP all -- * * 195.114.8.0/23 0.0.0.0/0 118 0 0 DROP all -- * * 195.114.16.0/23 0.0.0.0/0 119 0 0 DROP all -- * * 194.58.197.0/24 0.0.0.0/0 120 0 0 DROP all -- * * 194.146.204.0/22 0.0.0.0/0 121 0 0 DROP all -- * * 193.93.236.0/22 0.0.0.0/0 122 0 0 DROP all -- * * 193.33.192.0/23 0.0.0.0/0 123 0 0 DROP all -- * * 193.238.36.0/22 0.0.0.0/0 124 0 0 DROP all -- * * 193.238.120.0/22 0.0.0.0/0 125 0 0 DROP all -- * * 193.19.120.0/23 0.0.0.0/0 126 0 0 DROP all -- * * 193.110.136.0/24 0.0.0.0/0 127 0 0 DROP all -- * * 192.67.16.0/24 0.0.0.0/0 128 0 0 DROP all -- * * 192.160.44.0/24 0.0.0.0/0 129 0 0 DROP all -- * * 170.67.0.0/16 0.0.0.0/0 130 0 0 DROP all -- * * 167.97.0.0/16 0.0.0.0/0 131 0 0 DROP all -- * * 152.147.0.0/16 0.0.0.0/0 132 0 0 DROP all -- * * 148.3.0.0/16 0.0.0.0/0 133 0 0 DROP all -- * * 143.49.0.0/16 0.0.0.0/0 134 0 0 DROP all -- * * 138.252.0.0/16 0.0.0.0/0 135 0 0 DROP all -- * * 134.33.0.0/16 0.0.0.0/0 136 0 0 DROP all -- * * 132.232.0.0/16 0.0.0.0/0 137 0 0 DROP all -- * * 128.13.0.0/16 0.0.0.0/0 138 0 0 DROP all -- * * 125.187.32.0/20 0.0.0.0/0 139 0 0 DROP all -- * * 122.8.0.0/15 0.0.0.0/0 Chain acctboth (2 references) num pkts bytes target prot opt in out source destination 1 569 36377 tcp -- !lo * xxxxxxxxxxx0 0.0.0.0/0 tcp dpt:80 2 472 92419 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx0 tcp spt:80 3 0 0 tcp -- !lo * xxxxxxxxxxx0 0.0.0.0/0 tcp dpt:25 4 967 85928 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx0 tcp spt:25 5 0 0 tcp -- !lo * xxxxxxxxxxx0 0.0.0.0/0 tcp dpt:110 6 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx0 tcp spt:110 7 15 1409 icmp -- !lo * xxxxxxxxxxx0 0.0.0.0/0 8 45 4607 icmp -- !lo * 0.0.0.0/0 xxxxxxxxxxx0 9 20613 19M tcp -- !lo * xxxxxxxxxxx0 0.0.0.0/0 10 20548 3253K tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx0 11 4229 535K udp -- !lo * xxxxxxxxxxx0 0.0.0.0/0 12 3384 456K udp -- !lo * 0.0.0.0/0 xxxxxxxxxxx0 13 24857 20M all -- !lo * xxxxxxxxxxx0 0.0.0.0/0 14 23977 3713K all -- !lo * 0.0.0.0/0 xxxxxxxxxxx0 15 0 0 tcp -- !lo * xxxxxxxxxxx1 0.0.0.0/0 tcp dpt:80 16 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx1 tcp spt:80 17 0 0 tcp -- !lo * xxxxxxxxxxx1 0.0.0.0/0 tcp dpt:25 18 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx1 tcp spt:25 19 0 0 tcp -- !lo * xxxxxxxxxxx1 0.0.0.0/0 tcp dpt:110 20 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx1 tcp spt:110 21 1 61 icmp -- !lo * xxxxxxxxxxx1 0.0.0.0/0 22 1 61 icmp -- !lo * 0.0.0.0/0 xxxxxxxxxxx1 23 0 0 tcp -- !lo * xxxxxxxxxxx1 0.0.0.0/0 24 1 40 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx1 25 121 19692 udp -- !lo * xxxxxxxxxxx1 0.0.0.0/0 26 136 9963 udp -- !lo * 0.0.0.0/0 xxxxxxxxxxx1 27 122 19753 all -- !lo * xxxxxxxxxxx1 0.0.0.0/0 28 138 10064 all -- !lo * 0.0.0.0/0 xxxxxxxxxxx1 29 0 0 tcp -- !lo * xxxxxxxxxxx2 0.0.0.0/0 tcp dpt:80 30 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx2 tcp spt:80 31 0 0 tcp -- !lo * xxxxxxxxxxx2 0.0.0.0/0 tcp dpt:25 32 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx2 tcp spt:25 33 0 0 tcp -- !lo * xxxxxxxxxxx2 0.0.0.0/0 tcp dpt:110 34 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx2 tcp spt:110 35 0 0 icmp -- !lo * xxxxxxxxxxx2 0.0.0.0/0 36 2 398 icmp -- !lo * 0.0.0.0/0 xxxxxxxxxxx2 37 0 0 tcp -- !lo * xxxxxxxxxxx2 0.0.0.0/0 38 1 40 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx2 39 29 4760 udp -- !lo * xxxxxxxxxxx2 0.0.0.0/0 40 54 3984 udp -- !lo * 0.0.0.0/0 xxxxxxxxxxx2 41 29 4760 all -- !lo * xxxxxxxxxxx2 0.0.0.0/0 42 57 4422 all -- !lo * 0.0.0.0/0 xxxxxxxxxxx2 43 0 0 tcp -- !lo * xxxxxxxxxxx3 0.0.0.0/0 tcp dpt:80 44 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx3 tcp spt:80 45 0 0 tcp -- !lo * xxxxxxxxxxx3 0.0.0.0/0 tcp dpt:25 46 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx3 tcp spt:25 47 0 0 tcp -- !lo * xxxxxxxxxxx3 0.0.0.0/0 tcp dpt:110 48 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx3 tcp spt:110 49 1 40 icmp -- !lo * xxxxxxxxxxx3 0.0.0.0/0 50 1 40 icmp -- !lo * 0.0.0.0/0 xxxxxxxxxxx3 51 0 0 tcp -- !lo * xxxxxxxxxxx3 0.0.0.0/0 52 1 40 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx3 53 1 183 udp -- !lo * xxxxxxxxxxx3 0.0.0.0/0 54 2 461 udp -- !lo * 0.0.0.0/0 xxxxxxxxxxx3 55 2 223 all -- !lo * xxxxxxxxxxx3 0.0.0.0/0 56 4 541 all -- !lo * 0.0.0.0/0 xxxxxxxxxxx3 57 0 0 tcp -- !lo * xxxxxxxxxxx4 0.0.0.0/0 tcp dpt:80 58 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx4 tcp spt:80 59 0 0 tcp -- !lo * xxxxxxxxxxx4 0.0.0.0/0 tcp dpt:25 60 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx4 tcp spt:25 61 0 0 tcp -- !lo * xxxxxxxxxxx4 0.0.0.0/0 tcp dpt:110 62 0 0 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx4 tcp spt:110 63 2 122 icmp -- !lo * xxxxxxxxxxx4 0.0.0.0/0 64 2 122 icmp -- !lo * 0.0.0.0/0 xxxxxxxxxxx4 65 44 30203 tcp -- !lo * xxxxxxxxxxx4 0.0.0.0/0 66 43 11122 tcp -- !lo * 0.0.0.0/0 xxxxxxxxxxx4 67 0 0 udp -- !lo * xxxxxxxxxxx4 0.0.0.0/0 68 1 391 udp -- !lo * 0.0.0.0/0 xxxxxxxxxxx4 69 46 30325 all -- !lo * xxxxxxxxxxx4 0.0.0.0/0 70 46 11635 all -- !lo * 0.0.0.0/0 xxxxxxxxxxx4 71 47583 23M all -- !lo * 0.0.0.0/0 0.0.0.0/0 ...Done.
in iptables -L is the list
i want deleted all the list
ThanksSoon ...
-
08-15-2007, 01:05 PM #6Web Hosting Master
- Join Date
- Nov 2001
- Location
- Philadelphia, Pa
- Posts
- 948
Chain INPUT (policy DROP 0 packets, 0 bytes)
If you clear (flush) all the rules in the INPUT policy, all traffic coming into the server will be dropped (since the default is to drop packets that don't match any rules).
Change the default for INPUT to accept, and place a rule at the end of the INPUT chain to drop all traffic (in effect, to drop all traffic that hasn't yet matched a rule/exception above it), rather than set the default policy to drop.
-
08-15-2007, 01:09 PM #7Web Hosting Master
- Join Date
- Nov 2001
- Location
- Philadelphia, Pa
- Posts
- 948
/sbin/iptables -P INPUT ACCEPT
/sbin/iptables-save >> /etc/sysconfig/iptables
(the 2nd line assumes a redhat variant)
You should then be able to flush your rules without being kicked out.