1: lo: mtu 16436 qdisc noqueue link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 brd 127.255.255.255 scope host lo 2: eth0: mtu 1500 qdisc pfifo_fast qlen 100 link/ether 00:05:5d:74:f2:9f brd ff:ff:ff:ff:ff:ff inet 194.84.141.2/25 brd 194.84.141.127 scope global eth0 3: eth1: mtu 1500 qdisc pfifo_fast qlen 100 link/ether 00:05:5d:74:f2:a4 brd ff:ff:ff:ff:ff:ff inet 194.84.141.129/25 brd 194.84.141.255 scope global eth1 inet 192.168.100.1/24 brd 192.168.100.255 scope global eth1:0 4: eth2: mtu 1500 qdisc pfifo_fast qlen 100 link/ether 00:0c:f1:95:a2:0d brd ff:ff:ff:ff:ff:ff inet 192.168.1.20/24 brd 192.168.1.255 scope global eth2 ####################################################################################################################### 194.84.141.128/25 dev eth1 proto kernel scope link src 194.84.141.129 194.84.141.0/25 dev eth0 proto kernel scope link src 194.84.141.2 192.168.100.0/24 dev eth1 proto kernel scope link src 192.168.100.1 192.168.1.0/24 dev eth2 proto kernel scope link src 192.168.1.20 127.0.0.0/8 dev lo scope link default via 194.84.141.1 dev eth0 ####################################################################################################################### Chain INPUT (policy ACCEPT 31676 packets, 7735K bytes) pkts bytes target prot opt in out source destination 3963 1661K w2o-cnt all -- eth0 any anywhere anywhere Chain FORWARD (policy DROP 427 packets, 32282 bytes) pkts bytes target prot opt in out source destination 24568 20M w2o-cnt all -- eth0 any anywhere anywhere 25186 1817K o2w-cnt all -- any eth0 anywhere anywhere 24568 20M w2o all -- eth0 any !194.84.141.128/25 194.84.141.128/25 26044 1904K o2w all -- eth1 any 194.84.141.128/25 !194.84.141.128/25 484 41843 ACCEPT all -- any any 194.84.141.128/25 192.168.1.0/24 1835 154K ACCEPT all -- any any 192.168.1.0/24 194.84.141.128/25 Chain OUTPUT (policy ACCEPT 27738 packets, 7176K bytes) pkts bytes target prot opt in out source destination 4254 1299K o2w-cnt all -- any eth0 anywhere anywhere Chain icmp-acc (2 references) pkts bytes target prot opt in out source destination 59 4284 ACCEPT icmp -- any any anywhere anywhere icmp destination-unreachable 0 0 ACCEPT icmp -- any any anywhere anywhere icmp source-quench 0 0 ACCEPT icmp -- any any anywhere anywhere icmp time-exceeded 0 0 ACCEPT icmp -- any any anywhere anywhere icmp parameter-problem Chain o2w (1 references) pkts bytes target prot opt in out source destination 55 3300 ACCEPT icmp -- any any anywhere anywhere icmp echo-request 983 82068 icmp-acc icmp -- any any anywhere anywhere 145 14630 o2w-acc all -- any any 194.84.141.245 anywhere 11 1028 o2w-acc udp -- any any anywhere anywhere udp dpt:domain 115 5520 LOG tcp -- any any !194.84.141.254 anywhere tcp dpt:http LOG level warning prefix `rej www o2w:' 0 0 LOG tcp -- any any !194.84.141.254 anywhere tcp dpt:https LOG level warning prefix `rej wws o2w:' 115 5520 REJECT tcp -- any any !194.84.141.254 anywhere tcp dpt:http reject-with icmp-port-unreachable 0 0 REJECT tcp -- any any !194.84.141.254 anywhere tcp dpt:https reject-with icmp-port-unreachable 3 144 LOG tcp -- any any !194.84.141.254 anywhere tcp dpt:ftp LOG level warning prefix `rej ftp o2w:' 0 0 LOG tcp -- any any !194.84.141.254 anywhere tcp dpt:ftp-data LOG level warning prefix `rej ftd o2w:' 3 144 REJECT tcp -- any any !194.84.141.254 anywhere tcp dpt:ftp reject-with icmp-port-unreachable 0 0 REJECT tcp -- any any !194.84.141.254 anywhere tcp dpt:ftp-data reject-with icmp-port-unreachable 23144 1720K o2w-acc tcp -- any any anywhere anywhere tcp spts:1024:65535 2571 159K REJECT all -- any any anywhere anywhere reject-with icmp-port-unreachable Chain o2w-acc (3 references) pkts bytes target prot opt in out source destination 11060 618K LOG tcp -- any any !194.84.141.254 !194.84.141.0/24 LOG level warning prefix `acc tcp o2w:' 15 4459 LOG udp -- any any !194.84.141.254 !194.84.141.0/24 LOG level warning prefix `acc udp o2w:' 23300 1736K ACCEPT all -- any any anywhere anywhere Chain o2w-cnt (2 references) pkts bytes target prot opt in out source destination 29440 3116K all -- any any anywhere anywhere 259 16230 all -- any any 194.84.141.130 anywhere 79 7221 all -- any any 194.84.141.131 anywhere 82 9698 all -- any any 194.84.141.132 anywhere 0 0 all -- any any 194.84.141.133 anywhere 0 0 all -- any any 194.84.141.134 anywhere 0 0 all -- any any 194.84.141.135 anywhere 0 0 all -- any any 194.84.141.136 anywhere 0 0 all -- any any 194.84.141.137 anywhere 0 0 all -- any any 194.84.141.138 anywhere 0 0 all -- any any 194.84.141.139 anywhere 0 0 all -- any any 194.84.141.140 anywhere 0 0 all -- any any 194.84.141.141 anywhere 0 0 all -- any any 194.84.141.142 anywhere 0 0 all -- any any 194.84.141.143 anywhere 0 0 all -- any any 194.84.141.144 anywhere 0 0 all -- any any 194.84.141.145 anywhere 0 0 all -- any any 194.84.141.146 anywhere 0 0 all -- any any 194.84.141.147 anywhere 0 0 all -- any any 194.84.141.148 anywhere 92 4921 all -- any any 194.84.141.149 anywhere 0 0 all -- any any 194.84.141.150 anywhere 0 0 all -- any any 194.84.141.151 anywhere 0 0 all -- any any 194.84.141.152 anywhere 0 0 all -- any any 194.84.141.153 anywhere 0 0 all -- any any 194.84.141.154 anywhere 23 3019 all -- any any pdc.aston.ru anywhere 0 0 all -- any any 194.84.141.156 anywhere 0 0 all -- any any 194.84.141.157 anywhere 0 0 all -- any any 194.84.141.158 anywhere 0 0 all -- any any 194.84.141.159 anywhere 0 0 all -- any any 194.84.141.160 anywhere 0 0 all -- any any 194.84.141.161 anywhere 22 1385 all -- any any 194.84.141.162 anywhere 0 0 all -- any any 194.84.141.163 anywhere 0 0 all -- any any 194.84.141.164 anywhere 0 0 all -- any any 194.84.141.165 anywhere 0 0 all -- any any 194.84.141.166 anywhere 0 0 all -- any any 194.84.141.167 anywhere 0 0 all -- any any 194.84.141.168 anywhere 0 0 all -- any any 194.84.141.169 anywhere 31 1419 all -- any any 194.84.141.170 anywhere 0 0 all -- any any 194.84.141.171 anywhere 0 0 all -- any any 194.84.141.172 anywhere 0 0 all -- any any 194.84.141.173 anywhere 0 0 all -- any any 194.84.141.174 anywhere 0 0 all -- any any 194.84.141.175 anywhere 0 0 all -- any any 194.84.141.176 anywhere 0 0 all -- any any 194.84.141.177 anywhere 0 0 all -- any any 194.84.141.178 anywhere 0 0 all -- any any 194.84.141.179 anywhere 0 0 all -- any any 194.84.141.180 anywhere 0 0 all -- any any 194.84.141.181 anywhere 0 0 all -- any any 194.84.141.182 anywhere 0 0 all -- any any 194.84.141.183 anywhere 0 0 all -- any any 194.84.141.184 anywhere 0 0 all -- any any 194.84.141.185 anywhere 0 0 all -- any any 194.84.141.186 anywhere 0 0 all -- any any 194.84.141.187 anywhere 1 151 all -- any any 194.84.141.188 anywhere 0 0 all -- any any 194.84.141.189 anywhere 0 0 all -- any any 194.84.141.190 anywhere 9839 454K all -- any any 194.84.141.191 anywhere 0 0 all -- any any 194.84.141.192 anywhere 0 0 all -- any any 194.84.141.193 anywhere 0 0 all -- any any 194.84.141.194 anywhere 0 0 all -- any any 194.84.141.195 anywhere 0 0 all -- any any 194.84.141.196 anywhere 0 0 all -- any any 194.84.141.197 anywhere 0 0 all -- any any 194.84.141.198 anywhere 0 0 all -- any any 194.84.141.199 anywhere 0 0 all -- any any 194.84.141.200 anywhere 0 0 all -- any any 194.84.141.201 anywhere 0 0 all -- any any 194.84.141.202 anywhere 0 0 all -- any any 194.84.141.203 anywhere 0 0 all -- any any 194.84.141.204 anywhere 0 0 all -- any any 194.84.141.205 anywhere 0 0 all -- any any 194.84.141.206 anywhere 0 0 all -- any any 194.84.141.207 anywhere 0 0 all -- any any 194.84.141.208 anywhere 30 1350 all -- any any 194.84.141.209 anywhere 14 596 all -- any any 194.84.141.210 anywhere 0 0 all -- any any 194.84.141.211 anywhere 0 0 all -- any any 194.84.141.212 anywhere 55 2400 all -- any any 194.84.141.213 anywhere 0 0 all -- any any 194.84.141.214 anywhere 0 0 all -- any any 194.84.141.215 anywhere 0 0 all -- any any 194.84.141.216 anywhere 0 0 all -- any any 194.84.141.217 anywhere 0 0 all -- any any 194.84.141.218 anywhere 0 0 all -- any any 194.84.141.219 anywhere 0 0 all -- any any 194.84.141.220 anywhere 61 5254 all -- any any 194.84.141.221 anywhere 0 0 all -- any any 194.84.141.222 anywhere 0 0 all -- any any 194.84.141.223 anywhere 0 0 all -- any any 194.84.141.224 anywhere 0 0 all -- any any 194.84.141.225 anywhere 0 0 all -- any any 194.84.141.226 anywhere 0 0 all -- any any 194.84.141.227 anywhere 0 0 all -- any any 194.84.141.228 anywhere 0 0 all -- any any 194.84.141.229 anywhere 0 0 all -- any any 194.84.141.230 anywhere 0 0 all -- any any 194.84.141.231 anywhere 0 0 all -- any any 194.84.141.232 anywhere 31 1488 all -- any any 194.84.141.233 anywhere 0 0 all -- any any 194.84.141.234 anywhere 0 0 all -- any any 194.84.141.235 anywhere 0 0 all -- any any 194.84.141.236 anywhere 0 0 all -- any any 194.84.141.237 anywhere 0 0 all -- any any 194.84.141.238 anywhere 0 0 all -- any any 194.84.141.239 anywhere 0 0 all -- any any 194.84.141.240 anywhere 0 0 all -- any any 194.84.141.241 anywhere 0 0 all -- any any 194.84.141.242 anywhere 0 0 all -- any any 194.84.141.243 anywhere 0 0 all -- any any 194.84.141.244 anywhere 192 20148 all -- any any 194.84.141.245 anywhere 1285 46485 all -- any any 194.84.141.246 anywhere 615 115K all -- any any 194.84.141.247 anywhere 0 0 all -- any any 194.84.141.248 anywhere 0 0 all -- any any 194.84.141.249 anywhere 0 0 all -- any any 194.84.141.250 anywhere 0 0 all -- any any 194.84.141.251 anywhere 0 0 all -- any any 194.84.141.252 anywhere 0 0 all -- any any 194.84.141.253 anywhere 12225 1113K all -- any any 194.84.141.254 anywhere Chain w2o (1 references) pkts bytes target prot opt in out source destination 0 0 ACCEPT icmp -- any any anywhere anywhere icmp echo-reply 134 6704 icmp-acc icmp -- any any anywhere anywhere 161 37231 w2o-acc all -- any any anywhere 194.84.141.245 5 1698 w2o-acc udp -- any any anywhere anywhere udp spt:domain dpts:1024:65535 22582 19M w2o-acc tcp -- any any anywhere 194.84.141.128/25 tcp dpts:1024:65535 flags:!SYN,RST,ACK/SYN 0 0 w2o-acc tcp -- any any anywhere 194.84.141.254 tcp spt:ftp 1 60 w2o-acc tcp -- any any anywhere 194.84.141.254 tcp spt:ftp-data 1760 98188 DROP all -- any any anywhere anywhere Chain w2o-acc (5 references) pkts bytes target prot opt in out source destination 13 661 all -- any any anywhere 194.84.141.130 7 521 all -- any any anywhere 194.84.141.131 0 0 all -- any any anywhere 194.84.141.132 0 0 all -- any any anywhere 194.84.141.133 0 0 all -- any any anywhere 194.84.141.134 0 0 all -- any any anywhere 194.84.141.135 0 0 all -- any any anywhere 194.84.141.136 0 0 all -- any any anywhere 194.84.141.137 0 0 all -- any any anywhere 194.84.141.138 0 0 all -- any any anywhere 194.84.141.139 0 0 all -- any any anywhere 194.84.141.140 0 0 all -- any any anywhere 194.84.141.141 0 0 all -- any any anywhere 194.84.141.142 0 0 all -- any any anywhere 194.84.141.143 0 0 all -- any any anywhere 194.84.141.144 0 0 all -- any any anywhere 194.84.141.145 0 0 all -- any any anywhere 194.84.141.146 0 0 all -- any any anywhere 194.84.141.147 0 0 all -- any any anywhere 194.84.141.148 0 0 all -- any any anywhere 194.84.141.149 0 0 all -- any any anywhere 194.84.141.150 0 0 all -- any any anywhere 194.84.141.151 0 0 all -- any any anywhere 194.84.141.152 0 0 all -- any any anywhere 194.84.141.153 0 0 all -- any any anywhere 194.84.141.154 0 0 all -- any any anywhere pdc.aston.ru 0 0 all -- any any anywhere 194.84.141.156 0 0 all -- any any anywhere 194.84.141.157 0 0 all -- any any anywhere 194.84.141.158 0 0 all -- any any anywhere 194.84.141.159 0 0 all -- any any anywhere 194.84.141.160 0 0 all -- any any anywhere 194.84.141.161 0 0 all -- any any anywhere 194.84.141.162 0 0 all -- any any anywhere 194.84.141.163 0 0 all -- any any anywhere 194.84.141.164 0 0 all -- any any anywhere 194.84.141.165 0 0 all -- any any anywhere 194.84.141.166 0 0 all -- any any anywhere 194.84.141.167 0 0 all -- any any anywhere 194.84.141.168 0 0 all -- any any anywhere 194.84.141.169 2 80 all -- any any anywhere 194.84.141.170 0 0 all -- any any anywhere 194.84.141.171 0 0 all -- any any anywhere 194.84.141.172 0 0 all -- any any anywhere 194.84.141.173 0 0 all -- any any anywhere 194.84.141.174 0 0 all -- any any anywhere 194.84.141.175 0 0 all -- any any anywhere 194.84.141.176 0 0 all -- any any anywhere 194.84.141.177 0 0 all -- any any anywhere 194.84.141.178 0 0 all -- any any anywhere 194.84.141.179 0 0 all -- any any anywhere 194.84.141.180 0 0 all -- any any anywhere 194.84.141.181 0 0 all -- any any anywhere 194.84.141.182 0 0 all -- any any anywhere 194.84.141.183 0 0 all -- any any anywhere 194.84.141.184 0 0 all -- any any anywhere 194.84.141.185 0 0 all -- any any anywhere 194.84.141.186 0 0 all -- any any anywhere 194.84.141.187 0 0 all -- any any anywhere 194.84.141.188 0 0 all -- any any anywhere 194.84.141.189 0 0 all -- any any anywhere 194.84.141.190 1761 1550K all -- any any anywhere 194.84.141.191 0 0 all -- any any anywhere 194.84.141.192 0 0 all -- any any anywhere 194.84.141.193 0 0 all -- any any anywhere 194.84.141.194 0 0 all -- any any anywhere 194.84.141.195 0 0 all -- any any anywhere 194.84.141.196 0 0 all -- any any anywhere 194.84.141.197 0 0 all -- any any anywhere 194.84.141.198 0 0 all -- any any anywhere 194.84.141.199 0 0 all -- any any anywhere 194.84.141.200 0 0 all -- any any anywhere 194.84.141.201 0 0 all -- any any anywhere 194.84.141.202 0 0 all -- any any anywhere 194.84.141.203 0 0 all -- any any anywhere 194.84.141.204 0 0 all -- any any anywhere 194.84.141.205 0 0 all -- any any anywhere 194.84.141.206 0 0 all -- any any anywhere 194.84.141.207 0 0 all -- any any anywhere 194.84.141.208 0 0 all -- any any anywhere 194.84.141.209 0 0 all -- any any anywhere 194.84.141.210 0 0 all -- any any anywhere 194.84.141.211 0 0 all -- any any anywhere 194.84.141.212 8 1352 all -- any any anywhere 194.84.141.213 0 0 all -- any any anywhere 194.84.141.214 0 0 all -- any any anywhere 194.84.141.215 0 0 all -- any any anywhere 194.84.141.216 0 0 all -- any any anywhere 194.84.141.217 0 0 all -- any any anywhere 194.84.141.218 0 0 all -- any any anywhere 194.84.141.219 0 0 all -- any any anywhere 194.84.141.220 10 985 all -- any any anywhere 194.84.141.221 0 0 all -- any any anywhere 194.84.141.222 0 0 all -- any any anywhere 194.84.141.223 0 0 all -- any any anywhere 194.84.141.224 0 0 all -- any any anywhere 194.84.141.225 0 0 all -- any any anywhere 194.84.141.226 0 0 all -- any any anywhere 194.84.141.227 0 0 all -- any any anywhere 194.84.141.228 0 0 all -- any any anywhere 194.84.141.229 0 0 all -- any any anywhere 194.84.141.230 0 0 all -- any any anywhere 194.84.141.231 0 0 all -- any any anywhere 194.84.141.232 0 0 all -- any any anywhere 194.84.141.233 0 0 all -- any any anywhere 194.84.141.234 0 0 all -- any any anywhere 194.84.141.235 0 0 all -- any any anywhere 194.84.141.236 0 0 all -- any any anywhere 194.84.141.237 0 0 all -- any any anywhere 194.84.141.238 0 0 all -- any any anywhere 194.84.141.239 0 0 all -- any any anywhere 194.84.141.240 0 0 all -- any any anywhere 194.84.141.241 0 0 all -- any any anywhere 194.84.141.242 0 0 all -- any any anywhere 194.84.141.243 0 0 all -- any any anywhere 194.84.141.244 45 13058 all -- any any anywhere 194.84.141.245 0 0 all -- any any anywhere 194.84.141.246 57 6487 all -- any any anywhere 194.84.141.247 0 0 all -- any any anywhere 194.84.141.248 0 0 all -- any any anywhere 194.84.141.249 0 0 all -- any any anywhere 194.84.141.250 0 0 all -- any any anywhere 194.84.141.251 0 0 all -- any any anywhere 194.84.141.252 0 0 all -- any any anywhere 194.84.141.253 839 713K all -- any any anywhere 194.84.141.254 1903 1573K LOG tcp -- any any !194.84.141.0/24 !194.84.141.254 LOG level warning prefix `acc tcp w2o:' 0 0 LOG udp -- any any !194.84.141.0/24 !194.84.141.254 LOG level warning prefix `acc udp w2o:' 2742 2285K ACCEPT all -- any any anywhere anywhere Chain w2o-cnt (2 references) pkts bytes target prot opt in out source destination 28531 21M all -- any any anywhere anywhere #######################################################################################################################