hosted by liquidweb


Go Back   Web Hosting Talk : Web Hosting Main Forums : Hosting Security and Technology : run iptables --flush and down server
Reply

Hosting Security and Technology Configuring and optimizing web hosting servers and operating systems, developing administration scripts, building servers, protecting against hackers, and general security (SSL certificates, etc.)
Forum Jump

run iptables --flush and down server

Reply Post New Thread In Hosting Security and Technology Subscription
 
Send news tip View All Posts Thread Tools Search this Thread Display Modes
  #1  
Old 08-15-2007, 08:21 AM
robocap robocap is offline
Web Hosting Guru
  
Join Date: Feb 2007
Posts: 324

run iptables --flush and down server

Hello
wil ltime i run iptables --flush my server go to full down
and must go to restart

whats problem?

__________________
Soon ...

Reply With Quote


Sponsored Links
  #2  
Old 08-15-2007, 12:14 PM
derek.bodner derek.bodner is offline
Web Hosting Master
  
Join Date: Nov 2001
Location: Philadelphia, Pa
Posts: 949
You likely have your default INPUT policy to drop. When you flush iptables, it doesn't change the default policy, so the default remains drop, but there are no exceptions.

Rather than set the default policy to drop, forward all onto a new chain, then make the last line in the new chain make it a -j REJECT --reject-with icmp-host-prohibited

This way, any traffic that doesn't match the above exceptions will be dropped, but if you flush iptables you won't be locked out.

Reply With Quote
  #3  
Old 08-15-2007, 12:32 PM
robocap robocap is offline
Web Hosting Guru
  
Join Date: Feb 2007
Posts: 324
Hello
i`m sorry
i don`t understand.
i have csf
will time i click on "Display the active iptables rules"
show very ip

i want deleted all the ip
do you can all ip saved in where?
where file or ...?
Thanks

__________________
Soon ...

Reply With Quote
Sponsored Links
  #4  
Old 08-15-2007, 12:45 PM
tanfwc tanfwc is offline
Web Hosting Master
  
Join Date: Apr 2004
Location: Singapore
Posts: 1,459
Quote:
Originally Posted by robocap View Post
Hello
i`m sorry
i don`t understand.
i have csf
will time i click on "Display the active iptables rules"
show very ip

i want deleted all the ip
do you can all ip saved in where?
where file or ...?
Thanks
can you rephrase because I simply cannot understand what you are talking about

__________________
tanfwc

Reply With Quote
  #5  
Old 08-15-2007, 12:53 PM
robocap robocap is offline
Web Hosting Guru
  
Join Date: Feb 2007
Posts: 324
Code:
ConfigServer Security & Firewall - csf v2.88

Show csf status...

Chain INPUT (policy DROP 0 packets, 0 bytes)
num   pkts bytes target     prot opt in     out     source               destination         
1     266K   89M acctboth   all  --  *      *       0.0.0.0/0            0.0.0.0/0           
2        2   120 DROP       all  --  !lo    *       212.72.183.160       0.0.0.0/0           
3       30 12024 DROP       all  --  !lo    *       85.133.180.157       0.0.0.0/0           
4        8   480 DROP       all  --  !lo    *       83.217.84.73         0.0.0.0/0           
5        0     0 DROP       all  --  !lo    *       81.214.166.74        0.0.0.0/0           
6        8   416 DROP       all  --  !lo    *       193.33.98.220        0.0.0.0/0           
7      886 54965 DROP       all  --  !lo    *       66.249.67.105        0.0.0.0/0           
8        6   360 DROP       all  --  !lo    *       85.17.145.51         0.0.0.0/0           
9       11   588 DROP       all  --  !lo    *       80.237.162.232       0.0.0.0/0           
10   15961 3263K ACCEPT     all  --  lo     *       0.0.0.0/0            0.0.0.0/0           
11    4335  274K INVDROP    all  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state INVALID 
12       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x3F/0x00 
13       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x3F/0x3F 
14       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x03/0x03 
15       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x06/0x06 
16       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x05/0x05 
17       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x11/0x01 
18       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x18/0x08 
19       0     0 INVDROP    tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp flags:0x30/0x20 
20    245K   85M DSHIELD    all  --  !lo    *       0.0.0.0/0            0.0.0.0/0           
21    245K   85M SPAMHAUS   all  --  !lo    *       0.0.0.0/0            0.0.0.0/0           
22    223K   84M ACCEPT     all  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
23       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:20 
24      33  1600 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:21 
25       5   240 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:22 
26     273 13540 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:25 
27       4   160 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:53 
28   13138  707K ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:80 
29      15   720 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:110 
30       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:143 
31       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:443 
32       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:465 
33       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:953 
34       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:993 
35       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:995 
36       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2077 
37       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2078 
38     681 32712 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2082 
39       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2083 
40      30  1440 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2086 
41       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2087 
42       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2095 
43       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2096 
44       0     0 ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:20 
45       0     0 ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:21 
46    5719  396K ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:53 
47       0     0 ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:953 
48     943 55568 ACCEPT     icmp --  !lo    *       0.0.0.0/0            0.0.0.0/0           state NEW icmp type 8 
49       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp spt:53 dpt:53 
50       0     0 ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           udp spt:53 dpt:53 
51       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp spt:53 dpts:1024:65535 
52      13  2595 ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           udp spt:53 dpts:1024:65535 
53       0     0 ACCEPT     tcp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           tcp spts:1024:65535 dpt:53 
54       0     0 ACCEPT     udp  --  !lo    *       0.0.0.0/0            0.0.0.0/0           udp spts:1024:65535 dpt:53 
55     184 29738 LOGDROPIN  all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain FORWARD (policy DROP 0 packets, 0 bytes)
num   pkts bytes target     prot opt in     out     source               destination         

Chain OUTPUT (policy DROP 0 packets, 0 bytes)
num   pkts bytes target     prot opt in     out     source               destination         
1        0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0            127.0.0.1           tcp dpt:25 OWNER UID match 32002 
2        0     0 DROP       all  --  *      !lo     0.0.0.0/0            212.72.183.160      
3       22  9382 DROP       all  --  *      !lo     0.0.0.0/0            85.133.180.157      
4        0     0 DROP       all  --  *      !lo     0.0.0.0/0            83.217.84.73        
5        0     0 DROP       all  --  *      !lo     0.0.0.0/0            81.214.166.74       
6        8  5256 DROP       all  --  *      !lo     0.0.0.0/0            193.33.98.220       
7        9   468 DROP       all  --  *      !lo     0.0.0.0/0            66.249.67.105       
8        0     0 DROP       all  --  *      !lo     0.0.0.0/0            85.17.145.51        
9        8   416 DROP       all  --  *      !lo     0.0.0.0/0            80.237.162.232      
10    2934  347K ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:25 OWNER GID match 12 
11       0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:25 OWNER GID match 32001 
12     117  6392 ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:25 OWNER UID match 0 
13    2153 88898 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:25 
14    267K  180M acctboth   all  --  *      *       0.0.0.0/0            0.0.0.0/0           
15   15844 3257K ACCEPT     all  --  *      lo      0.0.0.0/0            0.0.0.0/0           
16     156 33206 INVDROP    all  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state INVALID 
17       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x3F/0x00 
18       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x3F/0x3F 
19       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x03/0x03 
20       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x06/0x06 
21       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x05/0x05 
22       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x11/0x01 
23       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x18/0x08 
24       0     0 INVDROP    tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp flags:0x30/0x20 
25    237K  175M ACCEPT     all  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
26       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:20 
27       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:21 
28       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:22 
29       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:25 
30       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:37 
31      13   780 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:43 
32       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:53 
33     966 57960 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:80 
34       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:110 
35     273 16380 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:113 
36       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:443 
37       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:587 
38       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:873 
39       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:953 
40       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2087 
41       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2089 
42       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:2703 
43       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:20 
44       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:21 
45   11694  833K ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:53 
46       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:113 
47       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:123 
48       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:873 
49       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:953 
50       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           state NEW udp dpt:6277 
51       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp spt:53 dpt:53 
52       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           udp spt:53 dpt:53 
53       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp spts:1024:65535 dpt:53 
54       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           udp spts:1024:65535 dpt:53 
55       0     0 ACCEPT     tcp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           tcp spt:53 dpts:1024:65535 
56       0     0 ACCEPT     udp  --  *      !lo     0.0.0.0/0            0.0.0.0/0           udp spt:53 dpts:1024:65535 
57     389  554K LOGDROPOUT  all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain DSHIELD (1 references)
num   pkts bytes target     prot opt in     out     source               destination         
1        0     0 DROP       all  --  *      *       61.128.122.0/24      0.0.0.0/0           
2        0     0 DROP       all  --  *      *       72.52.111.0/24       0.0.0.0/0           
3        0     0 DROP       all  --  *      *       201.198.194.0/24     0.0.0.0/0           
4        0     0 DROP       all  --  *      *       58.20.228.0/24       0.0.0.0/0           
5        0     0 DROP       all  --  *      *       216.128.67.0/24      0.0.0.0/0           
6        2   808 DROP       all  --  *      *       219.146.96.0/24      0.0.0.0/0           
7        0     0 DROP       all  --  *      *       221.195.73.0/24      0.0.0.0/0           
8        0     0 DROP       all  --  *      *       221.208.208.0/24     0.0.0.0/0           
9        0     0 DROP       all  --  *      *       58.225.98.0/24       0.0.0.0/0           
10       0     0 DROP       all  --  *      *       81.3.245.0/24        0.0.0.0/0           
11       0     0 DROP       all  --  *      *       58.244.205.0/24      0.0.0.0/0           
12       7  6447 DROP       all  --  *      *       218.27.148.0/24      0.0.0.0/0           
13       0     0 DROP       all  --  *      *       58.211.16.0/24       0.0.0.0/0           
14       0     0 DROP       all  --  *      *       125.232.108.0/24     0.0.0.0/0           
15       0     0 DROP       all  --  *      *       91.141.19.0/24       0.0.0.0/0           
16       0     0 DROP       all  --  *      *       139.55.35.0/24       0.0.0.0/0           
17       0     0 DROP       all  --  *      *       221.6.77.0/24        0.0.0.0/0           
18       0     0 DROP       all  --  *      *       69.254.20.0/24       0.0.0.0/0           
19       0     0 DROP       all  --  *      *       81.3.253.0/24        0.0.0.0/0           
20       0     0 DROP       all  --  *      *       81.3.254.0/24        0.0.0.0/0           

Chain INVDROP (18 references)
num   pkts bytes target     prot opt in     out     source               destination         
1     4491  308K DROP       all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain LOGDROPIN (1 references)
num   pkts bytes target     prot opt in     out     source               destination         
1        0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:67 
2        0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:67 
3        0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:68 
4        0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:68 
5        0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:111 
6        0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:111 
7       37  2052 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:113 
8        0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:113 
9       22  1152 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpts:135:139 
10      16  1248 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpts:135:139 
11      10   512 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:445 
12       0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:445 
13       0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:513 
14       0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:513 
15       0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:520 
16       0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0           udp dpt:520 
17      40  3111 LOG        tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_IN Blocked* ' 
18      56 21519 LOG        udp  --  *      *       0.0.0.0/0            0.0.0.0/0           limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_IN Blocked* ' 
19       0     0 LOG        icmp --  *      *       0.0.0.0/0            0.0.0.0/0           limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_IN Blocked* ' 
20      99 24774 DROP       all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain LOGDROPOUT (1 references)
num   pkts bytes target     prot opt in     out     source               destination         
1      298  418K LOG        tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_OUT Blocked* ' 
2        0     0 LOG        udp  --  *      *       0.0.0.0/0            0.0.0.0/0           limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_OUT Blocked* ' 
3        0     0 LOG        icmp --  *      *       0.0.0.0/0            0.0.0.0/0           limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_OUT Blocked* ' 
4      389  554K DROP       all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain SPAMHAUS (1 references)
num   pkts bytes target     prot opt in     out     source               destination         
1        0     0 DROP       all  --  *      *       91.146.64.0/18       0.0.0.0/0           
2        0     0 DROP       all  --  *      *       91.146.112.0/20      0.0.0.0/0           
3        0     0 DROP       all  --  *      *       89.35.0.0/23         0.0.0.0/0           
4        0     0 DROP       all  --  *      *       89.32.203.0/24       0.0.0.0/0           
5        0     0 DROP       all  --  *      *       89.233.64.0/18       0.0.0.0/0           
6        0     0 DROP       all  --  *      *       89.208.122.0/23      0.0.0.0/0           
7        0     0 DROP       all  --  *      *       89.187.192.0/19      0.0.0.0/0           
8        0     0 DROP       all  --  *      *       89.145.128.0/20      0.0.0.0/0           
9        0     0 DROP       all  --  *      *       88.206.80.0/20       0.0.0.0/0           
10       0     0 DROP       all  --  *      *       88.206.8.0/21        0.0.0.0/0           
11       0     0 DROP       all  --  *      *       88.206.64.0/20       0.0.0.0/0           
12       0     0 DROP       all  --  *      *       88.206.0.0/17        0.0.0.0/0           
13       0     0 DROP       all  --  *      *       88.206.0.0/21        0.0.0.0/0           
14       0     0 DROP       all  --  *      *       86.59.160.0/19       0.0.0.0/0           
15       0     0 DROP       all  --  *      *       86.59.128.0/17       0.0.0.0/0           
16       0     0 DROP       all  --  *      *       86.111.128.0/19      0.0.0.0/0           
17       0     0 DROP       all  --  *      *       86.105.230.0/24      0.0.0.0/0           
18     111  7023 DROP       all  --  *      *       85.255.112.0/20      0.0.0.0/0           
19       0     0 DROP       all  --  *      *       83.223.240.0/22      0.0.0.0/0           
20       0     0 DROP       all  --  *      *       83.223.224.0/19      0.0.0.0/0           
21       0     0 DROP       all  --  *      *       81.95.156.0/22       0.0.0.0/0           
22       0     0 DROP       all  --  *      *       81.95.144.0/20       0.0.0.0/0           
23       0     0 DROP       all  --  *      *       81.17.16.0/20        0.0.0.0/0           
24       0     0 DROP       all  --  *      *       80.71.64.0/19        0.0.0.0/0           
25       0     0 DROP       all  --  *      *       72.21.64.0/20        0.0.0.0/0           
26       0     0 DROP       all  --  *      *       72.21.128.0/20       0.0.0.0/0           
27       0     0 DROP       all  --  *      *       69.8.176.0/20        0.0.0.0/0           
28     100  6611 DROP       all  --  *      *       69.50.160.0/19       0.0.0.0/0           
29       0     0 DROP       all  --  *      *       69.50.16.0/20        0.0.0.0/0           
30       0     0 DROP       all  --  *      *       69.10.0.0/20         0.0.0.0/0           
31       0     0 DROP       all  --  *      *       66.64.96.0/20        0.0.0.0/0           
32       0     0 DROP       all  --  *      *       66.55.160.0/19       0.0.0.0/0           
33       0     0 DROP       all  --  *      *       66.37.112.0/20       0.0.0.0/0           
34       0     0 DROP       all  --  *      *       66.235.128.0/20      0.0.0.0/0           
35       0     0 DROP       all  --  *      *       66.185.112.0/20      0.0.0.0/0           
36       0     0 DROP       all  --  *      *       66.181.160.0/19      0.0.0.0/0           
37       0     0 DROP       all  --  *      *       66.110.72.0/24       0.0.0.0/0           
38       0     0 DROP       all  --  *      *       66.102.32.0/20       0.0.0.0/0           
39       0     0 DROP       all  --  *      *       65.255.32.0/20       0.0.0.0/0           
40       0     0 DROP       all  --  *      *       65.182.128.0/20      0.0.0.0/0           
41       0     0 DROP       all  --  *      *       64.28.176.0/20       0.0.0.0/0           
42       0     0 DROP       all  --  *      *       64.255.128.0/19      0.0.0.0/0           
43       0     0 DROP       all  --  *      *       64.18.240.0/20       0.0.0.0/0           
44       0     0 DROP       all  --  *      *       63.246.32.0/20       0.0.0.0/0           
45       0     0 DROP       all  --  *      *       59.191.96.0/19       0.0.0.0/0           
46       0     0 DROP       all  --  *      *       58.83.4.0/22         0.0.0.0/0           
47       0     0 DROP       all  --  *      *       58.83.12.0/22        0.0.0.0/0           
48       0     0 DROP       all  --  *      *       58.83.0.0/16         0.0.0.0/0           
49       0     0 DROP       all  --  *      *       58.83.0.0/22         0.0.0.0/0           
50       0     0 DROP       all  --  *      *       58.65.238.0/23       0.0.0.0/0           
51       0     0 DROP       all  --  *      *       217.69.112.0/20      0.0.0.0/0           
52     111  7019 DROP       all  --  *      *       216.255.176.0/20     0.0.0.0/0           
53       0     0 DROP       all  --  *      *       216.243.240.0/20     0.0.0.0/0           
54       0     0 DROP       all  --  *      *       216.211.144.0/20     0.0.0.0/0           
55       0     0 DROP       all  --  *      *       216.16.128.0/18      0.0.0.0/0           
56       0     0 DROP       all  --  *      *       216.130.192.0/19     0.0.0.0/0           
57       0     0 DROP       all  --  *      *       216.108.224.0/20     0.0.0.0/0           
58       0     0 DROP       all  --  *      *       209.203.160.0/20     0.0.0.0/0           
59       0     0 DROP       all  --  *      *       209.197.192.0/19     0.0.0.0/0           
60       0     0 DROP       all  --  *      *       209.165.224.0/20     0.0.0.0/0           
61      56  6949 DROP       all  --  *      *       208.64.44.0/22       0.0.0.0/0           
62       0     0 DROP       all  --  *      *       207.191.160.0/20     0.0.0.0/0           
63       0     0 DROP       all  --  *      *       206.81.80.0/20       0.0.0.0/0           
64       0     0 DROP       all  --  *      *       206.197.99.0/24      0.0.0.0/0           
65       0     0 DROP       all  --  *      *       206.197.29.0/24      0.0.0.0/0           
66       0     0 DROP       all  --  *      *       206.197.28.0/24      0.0.0.0/0           
67       0     0 DROP       all  --  *      *       206.197.177.0/24     0.0.0.0/0           
68       0     0 DROP       all  --  *      *       206.197.176.0/24     0.0.0.0/0           
69       0     0 DROP       all  --  *      *       206.197.175.0/24     0.0.0.0/0           
70       0     0 DROP       all  --  *      *       206.197.134.0/24     0.0.0.0/0           
71       0     0 DROP       all  --  *      *       205.236.189.0/24     0.0.0.0/0           
72       0     0 DROP       all  --  *      *       205.235.64.0/20      0.0.0.0/0           
73       0     0 DROP       all  --  *      *       205.210.137.0/24     0.0.0.0/0           
74       0     0 DROP       all  --  *      *       205.172.188.0/22     0.0.0.0/0           
75       0     0 DROP       all  --  *      *       204.89.224.0/24      0.0.0.0/0           
76       0     0 DROP       all  --  *      *       204.89.156.0/23      0.0.0.0/0           
77       0     0 DROP       all  --  *      *       204.62.213.0/24      0.0.0.0/0           
78       0     0 DROP       all  --  *      *       204.52.255.0/24      0.0.0.0/0           
79       0     0 DROP       all  --  *      *       204.236.0.0/19       0.0.0.0/0           
80       0     0 DROP       all  --  *      *       204.14.24.0/21       0.0.0.0/0           
81       0     0 DROP       all  --  *      *       204.14.0.0/21        0.0.0.0/0           
82       0     0 DROP       all  --  *      *       204.13.32.0/21       0.0.0.0/0           
83       0     0 DROP       all  --  *      *       204.10.176.0/21      0.0.0.0/0           
84       0     0 DROP       all  --  *      *       203.82.16.0/21       0.0.0.0/0           
85       0     0 DROP       all  --  *      *       203.55.153.0/24      0.0.0.0/0           
86       0     0 DROP       all  --  *      *       203.4.142.0/24       0.0.0.0/0           
87       0     0 DROP       all  --  *      *       203.4.141.0/24       0.0.0.0/0           
88       0     0 DROP       all  --  *      *       203.34.71.0/24       0.0.0.0/0           
89       0     0 DROP       all  --  *      *       203.34.70.0/24       0.0.0.0/0           
90       0     0 DROP       all  --  *      *       203.34.205.0/24      0.0.0.0/0           
91       0     0 DROP       all  --  *      *       203.34.204.0/24      0.0.0.0/0           
92       0     0 DROP       all  --  *      *       203.34.192.0/23      0.0.0.0/0           
93       0     0 DROP       all  --  *      *       203.33.120.0/24      0.0.0.0/0           
94       0     0 DROP       all  --  *      *       203.31.88.0/23       0.0.0.0/0           
95       0     0 DROP       all  --  *      *       203.19.101.0/24      0.0.0.0/0           
96       0     0 DROP       all  --  *      *       202.62.252.0/24      0.0.0.0/0           
97       0     0 DROP       all  --  *      *       202.14.69.0/24       0.0.0.0/0           
98       0     0 DROP       all  --  *      *       201.71.0.0/20        0.0.0.0/0           
99       0     0 DROP       all  --  *      *       200.124.64.0/20      0.0.0.0/0           
100      0     0 DROP       all  --  *      *       200.108.160.0/20     0.0.0.0/0           
101      0     0 DROP       all  --  *      *       199.60.102.0/24      0.0.0.0/0           
102      0     0 DROP       all  --  *      *       199.248.213.0/24     0.0.0.0/0           
103      0     0 DROP       all  --  *      *       199.245.138.0/24     0.0.0.0/0           
104      0     0 DROP       all  --  *      *       199.201.152.0/24     0.0.0.0/0           
105      0     0 DROP       all  --  *      *       199.201.151.0/24     0.0.0.0/0           
106      0     0 DROP       all  --  *      *       199.166.200.0/22     0.0.0.0/0           
107      0     0 DROP       all  --  *      *       199.120.163.0/24     0.0.0.0/0           
108      0     0 DROP       all  --  *      *       198.204.0.0/21       0.0.0.0/0           
109      0     0 DROP       all  --  *      *       198.186.16.0/20      0.0.0.0/0           
110      0     0 DROP       all  --  *      *       198.151.152.0/22     0.0.0.0/0           
111      0     0 DROP       all  --  *      *       196.4.167.0/24       0.0.0.0/0           
112      0     0 DROP       all  --  *      *       195.95.161.0/24      0.0.0.0/0           
113      0     0 DROP       all  --  *      *       195.74.88.0/23       0.0.0.0/0           
114      0     0 DROP       all  --  *      *       195.64.162.0/23      0.0.0.0/0           
115      0     0 DROP       all  --  *      *       195.248.83.0/24      0.0.0.0/0           
116      0     0 DROP       all  --  *      *       195.206.120.0/22     0.0.0.0/0           
117      0     0 DROP       all  --  *      *       195.114.8.0/23       0.0.0.0/0           
118      0     0 DROP       all  --  *      *       195.114.16.0/23      0.0.0.0/0           
119      0     0 DROP       all  --  *      *       194.58.197.0/24      0.0.0.0/0           
120      0     0 DROP       all  --  *      *       194.146.204.0/22     0.0.0.0/0           
121      0     0 DROP       all  --  *      *       193.93.236.0/22      0.0.0.0/0           
122      0     0 DROP       all  --  *      *       193.33.192.0/23      0.0.0.0/0           
123      0     0 DROP       all  --  *      *       193.238.36.0/22      0.0.0.0/0           
124      0     0 DROP       all  --  *      *       193.238.120.0/22     0.0.0.0/0           
125      0     0 DROP       all  --  *      *       193.19.120.0/23      0.0.0.0/0           
126      0     0 DROP       all  --  *      *       193.110.136.0/24     0.0.0.0/0           
127      0     0 DROP       all  --  *      *       192.67.16.0/24       0.0.0.0/0           
128      0     0 DROP       all  --  *      *       192.160.44.0/24      0.0.0.0/0           
129      0     0 DROP       all  --  *      *       170.67.0.0/16        0.0.0.0/0           
130      0     0 DROP       all  --  *      *       167.97.0.0/16        0.0.0.0/0           
131      0     0 DROP       all  --  *      *       152.147.0.0/16       0.0.0.0/0           
132      0     0 DROP       all  --  *      *       148.3.0.0/16         0.0.0.0/0           
133      0     0 DROP       all  --  *      *       143.49.0.0/16        0.0.0.0/0           
134      0     0 DROP       all  --  *      *       138.252.0.0/16       0.0.0.0/0           
135      0     0 DROP       all  --  *      *       134.33.0.0/16        0.0.0.0/0           
136      0     0 DROP       all  --  *      *       132.232.0.0/16       0.0.0.0/0           
137      0     0 DROP       all  --  *      *       128.13.0.0/16        0.0.0.0/0           
138      0     0 DROP       all  --  *      *       125.187.32.0/20      0.0.0.0/0           
139      0     0 DROP       all  --  *      *       122.8.0.0/15         0.0.0.0/0           

Chain acctboth (2 references)
num   pkts bytes target     prot opt in     out     source               destination         
1      569 36377            tcp  --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           tcp dpt:80 
2      472 92419            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       tcp spt:80 
3        0     0            tcp  --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           tcp dpt:25 
4      967 85928            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       tcp spt:25 
5        0     0            tcp  --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           tcp dpt:110 
6        0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       tcp spt:110 
7       15  1409            icmp --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           
8       45  4607            icmp --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       
9    20613   19M            tcp  --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           
10   20548 3253K            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       
11    4229  535K            udp  --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           
12    3384  456K            udp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       
13   24857   20M            all  --  !lo    *       xxxxxxxxxxx0        0.0.0.0/0           
14   23977 3713K            all  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx0       
15       0     0            tcp  --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           tcp dpt:80 
16       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       tcp spt:80 
17       0     0            tcp  --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           tcp dpt:25 
18       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       tcp spt:25 
19       0     0            tcp  --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           tcp dpt:110 
20       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       tcp spt:110 
21       1    61            icmp --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           
22       1    61            icmp --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       
23       0     0            tcp  --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           
24       1    40            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       
25     121 19692            udp  --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           
26     136  9963            udp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       
27     122 19753            all  --  !lo    *       xxxxxxxxxxx1        0.0.0.0/0           
28     138 10064            all  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx1       
29       0     0            tcp  --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           tcp dpt:80 
30       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       tcp spt:80 
31       0     0            tcp  --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           tcp dpt:25 
32       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       tcp spt:25 
33       0     0            tcp  --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           tcp dpt:110 
34       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       tcp spt:110 
35       0     0            icmp --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           
36       2   398            icmp --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       
37       0     0            tcp  --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           
38       1    40            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       
39      29  4760            udp  --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           
40      54  3984            udp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       
41      29  4760            all  --  !lo    *       xxxxxxxxxxx2        0.0.0.0/0           
42      57  4422            all  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx2       
43       0     0            tcp  --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           tcp dpt:80 
44       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       tcp spt:80 
45       0     0            tcp  --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           tcp dpt:25 
46       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       tcp spt:25 
47       0     0            tcp  --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           tcp dpt:110 
48       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       tcp spt:110 
49       1    40            icmp --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           
50       1    40            icmp --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       
51       0     0            tcp  --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           
52       1    40            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       
53       1   183            udp  --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           
54       2   461            udp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       
55       2   223            all  --  !lo    *       xxxxxxxxxxx3        0.0.0.0/0           
56       4   541            all  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx3       
57       0     0            tcp  --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           tcp dpt:80 
58       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       tcp spt:80 
59       0     0            tcp  --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           tcp dpt:25 
60       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       tcp spt:25 
61       0     0            tcp  --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           tcp dpt:110 
62       0     0            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       tcp spt:110 
63       2   122            icmp --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           
64       2   122            icmp --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       
65      44 30203            tcp  --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           
66      43 11122            tcp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       
67       0     0            udp  --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           
68       1   391            udp  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       
69      46 30325            all  --  !lo    *       xxxxxxxxxxx4        0.0.0.0/0           
70      46 11635            all  --  !lo    *       0.0.0.0/0            xxxxxxxxxxx4       
71   47583   23M            all  --  !lo    *       0.0.0.0/0            0.0.0.0/0           

...Done.

in iptables -L is the list
i want deleted all the list

Thanks

__________________
Soon ...

Reply With Quote
  #6  
Old 08-15-2007, 01:05 PM
derek.bodner derek.bodner is offline
Web Hosting Master
  
Join Date: Nov 2001
Location: Philadelphia, Pa
Posts: 949
Quote:
Chain INPUT (policy DROP 0 packets, 0 bytes)
This line here shows that the default policy (i.e. what happens if none of the rules below are matched) on traffic coming into the server is dropped.

If you clear (flush) all the rules in the INPUT policy, all traffic coming into the server will be dropped (since the default is to drop packets that don't match any rules).

Change the default for INPUT to accept, and place a rule at the end of the INPUT chain to drop all traffic (in effect, to drop all traffic that hasn't yet matched a rule/exception above it), rather than set the default policy to drop.

Reply With Quote
  #7  
Old 08-15-2007, 01:09 PM
derek.bodner derek.bodner is offline
Web Hosting Master
  
Join Date: Nov 2001
Location: Philadelphia, Pa
Posts: 949
/sbin/iptables -P INPUT ACCEPT
/sbin/iptables-save >> /etc/sysconfig/iptables

(the 2nd line assumes a redhat variant)

You should then be able to flush your rules without being kicked out.

Reply With Quote
Reply

Related posts from TheWhir.com
Title Type Date Posted
Web Host 1&1 Internet Adds Server Restoration Tool for Virtual Machines Web Hosting News 2012-11-07 15:45:16
Web Host OrcsWeb Offers Support for Windows Server 2012 Web Hosting News 2012-08-24 11:08:35
MochaHost Enhances Server Performance with Tomcat Native Library Accelerator Web Hosting News 2012-08-01 15:35:20
Web Host 1&1 Enhances Dedicated Server Line with 32 Core, 64 GB RAM Server Web Hosting News 2011-12-20 15:30:05
DiscountASP.NET Launches Free Beta for Microsoft SQL Server 2012 Hosting Web Hosting News 2011-12-13 22:02:03


« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode
Postbit Selector

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Forum Jump
Login:
Log in with your username and password
Username:
Password:



Forgot Password?
Advertisement:
Web Hosting News:

cPanel Addresses User Concerns of Transfer and Backup Restore System Security

US Attorney says Government Should Have Warrants to Search Email

8kMiles Acquires Cloud Security Firm FuGen Solutions for $7.5 Million

Name.com Resets Customer Passwords After Security Breach

Outbound Spam Causing Sleepless Nights?

Malwarebytes Launches Data Scan-and-Backup Service

Commtouch Report: Spam, Malware Continues to Increase in Q1 2013

Researchers Urge System Admins to Check for New Apache Web Server Backdoor Malware

APWG Study Finds Phishers Increasingly Target Shared Virtual Servers

Man Arrested in Connection to Spamhaus DDoS Attacks



 

Learn more about advertising opportunities across the iNET Interactive Network.

LiquidWeb
X

Welcome to WebHostingTalk.com

Create your username to jump into the discussion!

WebHostingTalk.com is the largest, most influentual web hosting community on the Internet. Join us by filling in the form below.


(4 digit year)

Already a member?