Results 1 to 7 of 7
  1. #1
    Join Date
    Feb 2007
    Posts
    327

    run iptables --flush and down server

    Hello
    wil ltime i run iptables --flush my server go to full down
    and must go to restart

    whats problem?
    Soon ...

  2. #2
    Join Date
    Nov 2001
    Location
    Philadelphia, Pa
    Posts
    948
    You likely have your default INPUT policy to drop. When you flush iptables, it doesn't change the default policy, so the default remains drop, but there are no exceptions.

    Rather than set the default policy to drop, forward all onto a new chain, then make the last line in the new chain make it a -j REJECT --reject-with icmp-host-prohibited

    This way, any traffic that doesn't match the above exceptions will be dropped, but if you flush iptables you won't be locked out.

  3. #3
    Join Date
    Feb 2007
    Posts
    327
    Hello
    i`m sorry
    i don`t understand.
    i have csf
    will time i click on "Display the active iptables rules"
    show very ip

    i want deleted all the ip
    do you can all ip saved in where?
    where file or ...?
    Thanks
    Soon ...

  4. #4
    Join Date
    Apr 2004
    Location
    Singapore
    Posts
    1,522
    Quote Originally Posted by robocap View Post
    Hello
    i`m sorry
    i don`t understand.
    i have csf
    will time i click on "Display the active iptables rules"
    show very ip

    i want deleted all the ip
    do you can all ip saved in where?
    where file or ...?
    Thanks
    can you rephrase because I simply cannot understand what you are talking about
    tanfwc

  5. #5
    Join Date
    Feb 2007
    Posts
    327
    Code:
    ConfigServer Security & Firewall - csf v2.88
    
    Show csf status...
    
    Chain INPUT (policy DROP 0 packets, 0 bytes)
    num   pkts bytes target     prot opt in     out     source               destination         
    1     266K   89M acctboth   all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    2        2   120 DROP       all  --  !lo    *       212.72.183.160       0.0.0.0/0           
    3       30 12024 DROP       all  --  !lo    *       85.133.180.157       0.0.0.0/0           
    4        8   480 DROP       all  --  !lo    *       83.217.84.73         0.0.0.0/0           
    5        0     0 DROP       all  --  !lo    *       81.214.166.74        0.0.0.0/0           
    6        8   416 DROP       all  --  !lo    *       193.33.98.220        0.0.0.0/0           
    7      886 54965 DROP       all  --  !lo    *       66.249.67.105        0.0.0.0/0           
    8        6   360 DROP       all  --  !lo    *       85.17.145.51         0.0.0.0/0           
    9       11   588 DROP       all  --  !lo    *       80.237.162.232       0.0.0.0/0           
    10   15961 3263K ACCEPT     all  --  lo     *       0.0.0.0/0            0.0.0.0/0           
    11    4335  274K INVDROP    all  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state INVALID 
    12       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x3F/0x00 
    13       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x3F/0x3F 
    14       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x03/0x03 
    15       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x06/0x06 
    16       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x05/0x05 
    17       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x11/0x01 
    18       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x18/0x08 
    19       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x30/0x20 
    20    245K   85M DSHIELD    all  --  !lo    *       0.0.0.0/0            0.0.0.0/0           
    21    245K   85M SPAMHAUS   all  --  !lo    *       0.0.0.0/0            0.0.0.0/0           
    22    223K   84M ACCEPT     all  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
    23       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:20 
    24      33  1600 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:21 
    25       5   240 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:22 
    26     273 13540 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:25 
    27       4   160 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:53 
    28   13138  707K ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:80 
    29      15   720 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:110 
    30       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:143 
    31       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:443 
    32       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:465 
    33       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:953 
    34       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:993 
    35       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:995 
    36       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2077 
    37       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2078 
    38     681 32712 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2082 
    39       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2083 
    40      30  1440 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2086 
    41       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2087 
    42       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2095 
    43       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2096 
    44       0     0 ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:20 
    45       0     0 ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:21 
    46    5719  396K ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:53 
    47       0     0 ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:953 
    48     943 55568 ACCEPT     icmp --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW icmp type 8 
    49       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp spt:53 dpt:53 
    50       0     0 ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           udp spt:53 dpt:53 
    51       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp spt:53 dpts:1024:65535 
    52      13  2595 ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           udp spt:53 dpts:1024:65535 
    53       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp spts:1024:65535 dpt:53 
    54       0     0 ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           udp spts:1024:65535 dpt:53 
    55     184 29738 LOGDROPIN  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    
    Chain FORWARD (policy DROP 0 packets, 0 bytes)
    num   pkts bytes target     prot opt in     out     source               destination         
    
    Chain OUTPUT (policy DROP 0 packets, 0 bytes)
    num   pkts bytes target     prot opt in     out     source               destination         
    1        0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0            127.0.0.1           tcp dpt:25 OWNER UID match 32002 
    2        0     0 DROP       all  --  *      !lo     0.0.0.0/0            212.72.183.160      
    3       22  9382 DROP       all  --  *      !lo     0.0.0.0/0            85.133.180.157      
    4        0     0 DROP       all  --  *      !lo     0.0.0.0/0            83.217.84.73        
    5        0     0 DROP       all  --  *      !lo     0.0.0.0/0            81.214.166.74       
    6        8  5256 DROP       all  --  *      !lo     0.0.0.0/0            193.33.98.220       
    7        9   468 DROP       all  --  *      !lo     0.0.0.0/0            66.249.67.105       
    8        0     0 DROP       all  --  *      !lo     0.0.0.0/0            85.17.145.51        
    9        8   416 DROP       all  --  *      !lo     0.0.0.0/0            80.237.162.232      
    10    2934  347K ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:25 OWNER GID match 12 
    11       0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:25 OWNER GID match 32001 
    12     117  6392 ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:25 OWNER UID match 0 
    13    2153 88898 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:25 
    14    267K  180M acctboth   all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    15   15844 3257K ACCEPT     all  --  *      lo      0.0.0.0/0            0.0.0.0/0           
    16     156 33206 INVDROP    all  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state INVALID 
    17       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x3F/0x00 
    18       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x3F/0x3F 
    19       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x03/0x03 
    20       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x06/0x06 
    21       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x05/0x05 
    22       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x11/0x01 
    23       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x18/0x08 
    24       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x30/0x20 
    25    237K  175M ACCEPT     all  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
    26       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:20 
    27       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:21 
    28       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:22 
    29       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:25 
    30       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:37 
    31      13   780 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:43 
    32       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:53 
    33     966 57960 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:80 
    34       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:110 
    35     273 16380 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:113 
    36       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:443 
    37       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:587 
    38       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:873 
    39       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:953 
    40       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2087 
    41       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2089 
    42       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2703 
    43       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:20 
    44       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:21 
    45   11694  833K ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:53 
    46       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:113 
    47       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:123 
    48       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:873 
    49       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:953 
    50       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:6277 
    51       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp spt:53 dpt:53 
    52       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           udp spt:53 dpt:53 
    53       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp spts:1024:65535 dpt:53 
    54       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           udp spts:1024:65535 dpt:53 
    55       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp spt:53 dpts:1024:65535 
    56       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           udp spt:53 dpts:1024:65535 
    57     389  554K LOGDROPOUT  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    
    Chain DSHIELD (1 references)
    num   pkts bytes target     prot opt in     out     source               destination         
    1        0     0 DROP       all  --  *      *       61.128.122.0/24      0.0.0.0/0           
    2        0     0 DROP       all  --  *      *       72.52.111.0/24       0.0.0.0/0           
    3        0     0 DROP       all  --  *      *       201.198.194.0/24     0.0.0.0/0           
    4        0     0 DROP       all  --  *      *       58.20.228.0/24       0.0.0.0/0           
    5        0     0 DROP       all  --  *      *       216.128.67.0/24      0.0.0.0/0           
    6        2   808 DROP       all  --  *      *       219.146.96.0/24      0.0.0.0/0           
    7        0     0 DROP       all  --  *      *       221.195.73.0/24      0.0.0.0/0           
    8        0     0 DROP       all  --  *      *       221.208.208.0/24     0.0.0.0/0           
    9        0     0 DROP       all  --  *      *       58.225.98.0/24       0.0.0.0/0           
    10       0     0 DROP       all  --  *      *       81.3.245.0/24        0.0.0.0/0           
    11       0     0 DROP       all  --  *      *       58.244.205.0/24      0.0.0.0/0           
    12       7  6447 DROP       all  --  *      *       218.27.148.0/24      0.0.0.0/0           
    13       0     0 DROP       all  --  *      *       58.211.16.0/24       0.0.0.0/0           
    14       0     0 DROP       all  --  *      *       125.232.108.0/24     0.0.0.0/0           
    15       0     0 DROP       all  --  *      *       91.141.19.0/24       0.0.0.0/0           
    16       0     0 DROP       all  --  *      *       139.55.35.0/24       0.0.0.0/0           
    17       0     0 DROP       all  --  *      *       221.6.77.0/24        0.0.0.0/0           
    18       0     0 DROP       all  --  *      *       69.254.20.0/24       0.0.0.0/0           
    19       0     0 DROP       all  --  *      *       81.3.253.0/24        0.0.0.0/0           
    20       0     0 DROP       all  --  *      *       81.3.254.0/24        0.0.0.0/0           
    
    Chain INVDROP (18 references)
    num   pkts bytes target     prot opt in     out     source               destination         
    1     4491  308K DROP       all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    
    Chain LOGDROPIN (1 references)
    num   pkts bytes target     prot opt in     out     source               destination         
    1        0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:67 
    2        0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:67 
    3        0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:68 
    4        0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:68 
    5        0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:111 
    6        0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:111 
    7       37  2052 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:113 
    8        0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:113 
    9       22  1152 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpts:135:139 
    10      16  1248 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpts:135:139 
    11      10   512 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:445 
    12       0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:445 
    13       0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:513 
    14       0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:513 
    15       0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:520 
    16       0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:520 
    17      40  3111 LOG        tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_IN Blocked* ' 
    18      56 21519 LOG        udp  --  *      *       0.0.0.0/0            0.0.0.0/0           limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_IN Blocked* ' 
    19       0     0 LOG        icmp --  *      *       0.0.0.0/0            0.0.0.0/0           limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_IN Blocked* ' 
    20      99 24774 DROP       all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    
    Chain LOGDROPOUT (1 references)
    num   pkts bytes target     prot opt in     out     source               destination         
    1      298  418K LOG        tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_OUT Blocked* ' 
    2        0     0 LOG        udp  --  *      *       0.0.0.0/0            0.0.0.0/0           limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_OUT Blocked* ' 
    3        0     0 LOG        icmp --  *      *       0.0.0.0/0            0.0.0.0/0           limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_OUT Blocked* ' 
    4      389  554K DROP       all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    
    Chain SPAMHAUS (1 references)
    num   pkts bytes target     prot opt in     out     source               destination         
    1        0     0 DROP       all  --  *      *       91.146.64.0/18       0.0.0.0/0           
    2        0     0 DROP       all  --  *      *       91.146.112.0/20      0.0.0.0/0           
    3        0     0 DROP       all  --  *      *       89.35.0.0/23         0.0.0.0/0           
    4        0     0 DROP       all  --  *      *       89.32.203.0/24       0.0.0.0/0           
    5        0     0 DROP       all  --  *      *       89.233.64.0/18       0.0.0.0/0           
    6        0     0 DROP       all  --  *      *       89.208.122.0/23      0.0.0.0/0           
    7        0     0 DROP       all  --  *      *       89.187.192.0/19      0.0.0.0/0           
    8        0     0 DROP       all  --  *      *       89.145.128.0/20      0.0.0.0/0           
    9        0     0 DROP       all  --  *      *       88.206.80.0/20       0.0.0.0/0           
    10       0     0 DROP       all  --  *      *       88.206.8.0/21        0.0.0.0/0           
    11       0     0 DROP       all  --  *      *       88.206.64.0/20       0.0.0.0/0           
    12       0     0 DROP       all  --  *      *       88.206.0.0/17        0.0.0.0/0           
    13       0     0 DROP       all  --  *      *       88.206.0.0/21        0.0.0.0/0           
    14       0     0 DROP       all  --  *      *       86.59.160.0/19       0.0.0.0/0           
    15       0     0 DROP       all  --  *      *       86.59.128.0/17       0.0.0.0/0           
    16       0     0 DROP       all  --  *      *       86.111.128.0/19      0.0.0.0/0           
    17       0     0 DROP       all  --  *      *       86.105.230.0/24      0.0.0.0/0           
    18     111  7023 DROP       all  --  *      *       85.255.112.0/20      0.0.0.0/0           
    19       0     0 DROP       all  --  *      *       83.223.240.0/22      0.0.0.0/0           
    20       0     0 DROP       all  --  *      *       83.223.224.0/19      0.0.0.0/0           
    21       0     0 DROP       all  --  *      *       81.95.156.0/22       0.0.0.0/0           
    22       0     0 DROP       all  --  *      *       81.95.144.0/20       0.0.0.0/0           
    23       0     0 DROP       all  --  *      *       81.17.16.0/20        0.0.0.0/0           
    24       0     0 DROP       all  --  *      *       80.71.64.0/19        0.0.0.0/0           
    25       0     0 DROP       all  --  *      *       72.21.64.0/20        0.0.0.0/0           
    26       0     0 DROP       all  --  *      *       72.21.128.0/20       0.0.0.0/0           
    27       0     0 DROP       all  --  *      *       69.8.176.0/20        0.0.0.0/0           
    28     100  6611 DROP       all  --  *      *       69.50.160.0/19       0.0.0.0/0           
    29       0     0 DROP       all  --  *      *       69.50.16.0/20        0.0.0.0/0           
    30       0     0 DROP       all  --  *      *       69.10.0.0/20         0.0.0.0/0           
    31       0     0 DROP       all  --  *      *       66.64.96.0/20        0.0.0.0/0           
    32       0     0 DROP       all  --  *      *       66.55.160.0/19       0.0.0.0/0           
    33       0     0 DROP       all  --  *      *       66.37.112.0/20       0.0.0.0/0           
    34       0     0 DROP       all  --  *      *       66.235.128.0/20      0.0.0.0/0           
    35       0     0 DROP       all  --  *      *       66.185.112.0/20      0.0.0.0/0           
    36       0     0 DROP       all  --  *      *       66.181.160.0/19      0.0.0.0/0           
    37       0     0 DROP       all  --  *      *       66.110.72.0/24       0.0.0.0/0           
    38       0     0 DROP       all  --  *      *       66.102.32.0/20       0.0.0.0/0           
    39       0     0 DROP       all  --  *      *       65.255.32.0/20       0.0.0.0/0           
    40       0     0 DROP       all  --  *      *       65.182.128.0/20      0.0.0.0/0           
    41       0     0 DROP       all  --  *      *       64.28.176.0/20       0.0.0.0/0           
    42       0     0 DROP       all  --  *      *       64.255.128.0/19      0.0.0.0/0           
    43       0     0 DROP       all  --  *      *       64.18.240.0/20       0.0.0.0/0           
    44       0     0 DROP       all  --  *      *       63.246.32.0/20       0.0.0.0/0           
    45       0     0 DROP       all  --  *      *       59.191.96.0/19       0.0.0.0/0           
    46       0     0 DROP       all  --  *      *       58.83.4.0/22         0.0.0.0/0           
    47       0     0 DROP       all  --  *      *       58.83.12.0/22        0.0.0.0/0           
    48       0     0 DROP       all  --  *      *       58.83.0.0/16         0.0.0.0/0           
    49       0     0 DROP       all  --  *      *       58.83.0.0/22         0.0.0.0/0           
    50       0     0 DROP       all  --  *      *       58.65.238.0/23       0.0.0.0/0           
    51       0     0 DROP       all  --  *      *       217.69.112.0/20      0.0.0.0/0           
    52     111  7019 DROP       all  --  *      *       216.255.176.0/20     0.0.0.0/0           
    53       0     0 DROP       all  --  *      *       216.243.240.0/20     0.0.0.0/0           
    54       0     0 DROP       all  --  *      *       216.211.144.0/20     0.0.0.0/0           
    55       0     0 DROP       all  --  *      *       216.16.128.0/18      0.0.0.0/0           
    56       0     0 DROP       all  --  *      *       216.130.192.0/19     0.0.0.0/0           
    57       0     0 DROP       all  --  *      *       216.108.224.0/20     0.0.0.0/0           
    58       0     0 DROP       all  --  *      *       209.203.160.0/20     0.0.0.0/0           
    59       0     0 DROP       all  --  *      *       209.197.192.0/19     0.0.0.0/0           
    60       0     0 DROP       all  --  *      *       209.165.224.0/20     0.0.0.0/0           
    61      56  6949 DROP       all  --  *      *       208.64.44.0/22       0.0.0.0/0           
    62       0     0 DROP       all  --  *      *       207.191.160.0/20     0.0.0.0/0           
    63       0     0 DROP       all  --  *      *       206.81.80.0/20       0.0.0.0/0           
    64       0     0 DROP       all  --  *      *       206.197.99.0/24      0.0.0.0/0           
    65       0     0 DROP       all  --  *      *       206.197.29.0/24      0.0.0.0/0           
    66       0     0 DROP       all  --  *      *       206.197.28.0/24      0.0.0.0/0           
    67       0     0 DROP       all  --  *      *       206.197.177.0/24     0.0.0.0/0           
    68       0     0 DROP       all  --  *      *       206.197.176.0/24     0.0.0.0/0           
    69       0     0 DROP       all  --  *      *       206.197.175.0/24     0.0.0.0/0           
    70       0     0 DROP       all  --  *      *       206.197.134.0/24     0.0.0.0/0           
    71       0     0 DROP       all  --  *      *       205.236.189.0/24     0.0.0.0/0           
    72       0     0 DROP       all  --  *      *       205.235.64.0/20      0.0.0.0/0           
    73       0     0 DROP       all  --  *      *       205.210.137.0/24     0.0.0.0/0           
    74       0     0 DROP       all  --  *      *       205.172.188.0/22     0.0.0.0/0           
    75       0     0 DROP       all  --  *      *       204.89.224.0/24      0.0.0.0/0           
    76       0     0 DROP       all  --  *      *       204.89.156.0/23      0.0.0.0/0           
    77       0     0 DROP       all  --  *      *       204.62.213.0/24      0.0.0.0/0           
    78       0     0 DROP       all  --  *      *       204.52.255.0/24      0.0.0.0/0           
    79       0     0 DROP       all  --  *      *       204.236.0.0/19       0.0.0.0/0           
    80       0     0 DROP       all  --  *      *       204.14.24.0/21       0.0.0.0/0           
    81       0     0 DROP       all  --  *      *       204.14.0.0/21        0.0.0.0/0           
    82       0     0 DROP       all  --  *      *       204.13.32.0/21       0.0.0.0/0           
    83       0     0 DROP       all  --  *      *       204.10.176.0/21      0.0.0.0/0           
    84       0     0 DROP       all  --  *      *       203.82.16.0/21       0.0.0.0/0           
    85       0     0 DROP       all  --  *      *       203.55.153.0/24      0.0.0.0/0           
    86       0     0 DROP       all  --  *      *       203.4.142.0/24       0.0.0.0/0           
    87       0     0 DROP       all  --  *      *       203.4.141.0/24       0.0.0.0/0           
    88       0     0 DROP       all  --  *      *       203.34.71.0/24       0.0.0.0/0           
    89       0     0 DROP       all  --  *      *       203.34.70.0/24       0.0.0.0/0           
    90       0     0 DROP       all  --  *      *       203.34.205.0/24      0.0.0.0/0           
    91       0     0 DROP       all  --  *      *       203.34.204.0/24      0.0.0.0/0           
    92       0     0 DROP       all  --  *      *       203.34.192.0/23      0.0.0.0/0           
    93       0     0 DROP       all  --  *      *       203.33.120.0/24      0.0.0.0/0           
    94       0     0 DROP       all  --  *      *       203.31.88.0/23       0.0.0.0/0           
    95       0     0 DROP       all  --  *      *       203.19.101.0/24      0.0.0.0/0           
    96       0     0 DROP       all  --  *      *       202.62.252.0/24      0.0.0.0/0           
    97       0     0 DROP       all  --  *      *       202.14.69.0/24       0.0.0.0/0           
    98       0     0 DROP       all  --  *      *       201.71.0.0/20        0.0.0.0/0           
    99       0     0 DROP       all  --  *      *       200.124.64.0/20      0.0.0.0/0           
    100      0     0 DROP       all  --  *      *       200.108.160.0/20     0.0.0.0/0           
    101      0     0 DROP       all  --  *      *       199.60.102.0/24      0.0.0.0/0           
    102      0     0 DROP       all  --  *      *       199.248.213.0/24     0.0.0.0/0           
    103      0     0 DROP       all  --  *      *       199.245.138.0/24     0.0.0.0/0           
    104      0     0 DROP       all  --  *      *       199.201.152.0/24     0.0.0.0/0           
    105      0     0 DROP       all  --  *      *       199.201.151.0/24     0.0.0.0/0           
    106      0     0 DROP       all  --  *      *       199.166.200.0/22     0.0.0.0/0           
    107      0     0 DROP       all  --  *      *       199.120.163.0/24     0.0.0.0/0           
    108      0     0 DROP       all  --  *      *       198.204.0.0/21       0.0.0.0/0           
    109      0     0 DROP       all  --  *      *       198.186.16.0/20      0.0.0.0/0           
    110      0     0 DROP       all  --  *      *       198.151.152.0/22     0.0.0.0/0           
    111      0     0 DROP       all  --  *      *       196.4.167.0/24       0.0.0.0/0           
    112      0     0 DROP       all  --  *      *       195.95.161.0/24      0.0.0.0/0           
    113      0     0 DROP       all  --  *      *       195.74.88.0/23       0.0.0.0/0           
    114      0     0 DROP       all  --  *      *       195.64.162.0/23      0.0.0.0/0           
    115      0     0 DROP       all  --  *      *       195.248.83.0/24      0.0.0.0/0           
    116      0     0 DROP       all  --  *      *       195.206.120.0/22     0.0.0.0/0           
    117      0     0 DROP       all  --  *      *       195.114.8.0/23       0.0.0.0/0           
    118      0     0 DROP       all  --  *      *       195.114.16.0/23      0.0.0.0/0           
    119      0     0 DROP       all  --  *      *       194.58.197.0/24      0.0.0.0/0           
    120      0     0 DROP       all  --  *      *       194.146.204.0/22     0.0.0.0/0           
    121      0     0 DROP       all  --  *      *       193.93.236.0/22      0.0.0.0/0           
    122      0     0 DROP       all  --  *      *       193.33.192.0/23      0.0.0.0/0           
    123      0     0 DROP       all  --  *      *       193.238.36.0/22      0.0.0.0/0           
    124      0     0 DROP       all  --  *      *       193.238.120.0/22     0.0.0.0/0           
    125      0     0 DROP       all  --  *      *       193.19.120.0/23      0.0.0.0/0           
    126      0     0 DROP       all  --  *      *       193.110.136.0/24     0.0.0.0/0           
    127      0     0 DROP       all  --  *      *       192.67.16.0/24       0.0.0.0/0           
    128      0     0 DROP       all  --  *      *       192.160.44.0/24      0.0.0.0/0           
    129      0     0 DROP       all  --  *      *       170.67.0.0/16        0.0.0.0/0           
    130      0     0 DROP       all  --  *      *       167.97.0.0/16        0.0.0.0/0           
    131      0     0 DROP       all  --  *      *       152.147.0.0/16       0.0.0.0/0           
    132      0     0 DROP       all  --  *      *       148.3.0.0/16         0.0.0.0/0           
    133      0     0 DROP       all  --  *      *       143.49.0.0/16        0.0.0.0/0           
    134      0     0 DROP       all  --  *      *       138.252.0.0/16       0.0.0.0/0           
    135      0     0 DROP       all  --  *      *       134.33.0.0/16        0.0.0.0/0           
    136      0     0 DROP       all  --  *      *       132.232.0.0/16       0.0.0.0/0           
    137      0     0 DROP       all  --  *      *       128.13.0.0/16        0.0.0.0/0           
    138      0     0 DROP       all  --  *      *       125.187.32.0/20      0.0.0.0/0           
    139      0     0 DROP       all  --  *      *       122.8.0.0/15         0.0.0.0/0           
    
    Chain acctboth (2 references)
    num   pkts bytes target     prot opt in     out     source               destination         
    1      569 36377            tcp  --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           tcp dpt:80 
    2      472 92419            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       tcp spt:80 
    3        0     0            tcp  --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           tcp dpt:25 
    4      967 85928            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       tcp spt:25 
    5        0     0            tcp  --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           tcp dpt:110 
    6        0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       tcp spt:110 
    7       15  1409            icmp --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           
    8       45  4607            icmp --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       
    9    20613   19M            tcp  --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           
    10   20548 3253K            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       
    11    4229  535K            udp  --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           
    12    3384  456K            udp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       
    13   24857   20M            all  --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           
    14   23977 3713K            all  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       
    15       0     0            tcp  --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           tcp dpt:80 
    16       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       tcp spt:80 
    17       0     0            tcp  --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           tcp dpt:25 
    18       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       tcp spt:25 
    19       0     0            tcp  --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           tcp dpt:110 
    20       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       tcp spt:110 
    21       1    61            icmp --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           
    22       1    61            icmp --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       
    23       0     0            tcp  --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           
    24       1    40            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       
    25     121 19692            udp  --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           
    26     136  9963            udp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       
    27     122 19753            all  --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           
    28     138 10064            all  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       
    29       0     0            tcp  --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           tcp dpt:80 
    30       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       tcp spt:80 
    31       0     0            tcp  --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           tcp dpt:25 
    32       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       tcp spt:25 
    33       0     0            tcp  --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           tcp dpt:110 
    34       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       tcp spt:110 
    35       0     0            icmp --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           
    36       2   398            icmp --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       
    37       0     0            tcp  --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           
    38       1    40            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       
    39      29  4760            udp  --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           
    40      54  3984            udp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       
    41      29  4760            all  --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           
    42      57  4422            all  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       
    43       0     0            tcp  --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           tcp dpt:80 
    44       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       tcp spt:80 
    45       0     0            tcp  --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           tcp dpt:25 
    46       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       tcp spt:25 
    47       0     0            tcp  --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           tcp dpt:110 
    48       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       tcp spt:110 
    49       1    40            icmp --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           
    50       1    40            icmp --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       
    51       0     0            tcp  --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           
    52       1    40            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       
    53       1   183            udp  --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           
    54       2   461            udp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       
    55       2   223            all  --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           
    56       4   541            all  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       
    57       0     0            tcp  --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           tcp dpt:80 
    58       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       tcp spt:80 
    59       0     0            tcp  --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           tcp dpt:25 
    60       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       tcp spt:25 
    61       0     0            tcp  --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           tcp dpt:110 
    62       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       tcp spt:110 
    63       2   122            icmp --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           
    64       2   122            icmp --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       
    65      44 30203            tcp  --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           
    66      43 11122            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       
    67       0     0            udp  --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           
    68       1   391            udp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       
    69      46 30325            all  --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           
    70      46 11635            all  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       
    71   47583   23M            all  --  !lo    *       0.0.0.0/0            0.0.0.0/0           
    
    ...Done.

    in iptables -L is the list
    i want deleted all the list

    Thanks
    Soon ...

  6. #6
    Join Date
    Nov 2001
    Location
    Philadelphia, Pa
    Posts
    948
    Chain INPUT (policy DROP 0 packets, 0 bytes)
    This line here shows that the default policy (i.e. what happens if none of the rules below are matched) on traffic coming into the server is dropped.

    If you clear (flush) all the rules in the INPUT policy, all traffic coming into the server will be dropped (since the default is to drop packets that don't match any rules).

    Change the default for INPUT to accept, and place a rule at the end of the INPUT chain to drop all traffic (in effect, to drop all traffic that hasn't yet matched a rule/exception above it), rather than set the default policy to drop.

  7. #7
    Join Date
    Nov 2001
    Location
    Philadelphia, Pa
    Posts
    948
    /sbin/iptables -P INPUT ACCEPT
    /sbin/iptables-save >> /etc/sysconfig/iptables

    (the 2nd line assumes a redhat variant)

    You should then be able to flush your rules without being kicked out.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •