Re: Severe Linux 2.4 kernel memory leakage

From: Chris Chabot (chabotc@reviewboard.com)
Date: Sun Nov 25 2001 - 10:19:32 EST


nope, just plain netfilter/iptables. Specificly (lsmod output) :

ipt_TOS 880 8 (autoclean)
ipt_MASQUERADE 1312 4 (autoclean)
ipt_state 576 7 (autoclean)
ipt_REJECT 2816 7 (autoclean)
ipt_LOG 3408 24 (autoclean)
ipt_limit 1008 26 (autoclean)
ip_nat_ftp 3184 0 (unused)
ip_conntrack_ftp 3536 0 [ip_nat_ftp]
iptable_mangle 1712 0 (autoclean) (unused)
iptable_nat 14448 1 (autoclean) [ipt_MASQUERADE
ip_nat_ftp]
ip_conntrack 15056 5 (autoclean) [ipt_MASQUERADE ipt_state
ip_nat_ftp ip_conntrack_ftp iptable_nat]
iptable_filter 1680 0 (autoclean) (unused)
ip_tables 11392 11 [ipt_TOS ipt_MASQUERADE ipt_state
ipt_REJECT ipt_LOG ipt_limit iptable_mangle iptable_nat iptable_filter]

I've also attached the output of 'iptables -L -n' so u can get an idea
of what its running.

        -- Chris

On Sun, 2001-11-25 at 16:10, James Morris wrote:
> On 25 Nov 2001, Chris Chabot wrote:
>
> > Also it has a (custom) iptables firewall script
>
> Are you using ipchains emulation?
>
>
> - James
> --
> James Morris
> <jmorris@intercode.com.au>
>

Chain INPUT (policy DROP)
target prot opt source destination
CHECKFLAGS tcp -- 0.0.0.0/0 0.0.0.0/0
INETIN all -- 0.0.0.0/0 0.0.0.0/0
CHECKFLAGS tcp -- 0.0.0.0/0 0.0.0.0/0
INETIN all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT all -- 192.168.0.0/24 0.0.0.0/0
ACCEPT all -- 10.0.0.0/24 0.0.0.0/0
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
UDPACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:67
UDPACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:67

Chain FORWARD (policy DROP)
target prot opt source destination
ACCEPT all -- 192.168.0.0/24 0.0.0.0/0
ACCEPT all -- 0.0.0.0/0 192.168.0.0/24
ACCEPT all -- 10.0.0.0/24 0.0.0.0/0
ACCEPT all -- 0.0.0.0/0 10.0.0.0/24
TCPACCEPT tcp -- 0.0.0.0/0 192.168.0.10 tcp dpt:80
TCPACCEPT tcp -- 0.0.0.0/0 192.168.0.10 tcp dpt:80
TCPACCEPT tcp -- 0.0.0.0/0 192.168.0.10 tcp dpt:443
TCPACCEPT tcp -- 0.0.0.0/0 192.168.0.10 tcp dpt:443

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
INETOUT all -- 0.0.0.0/0 0.0.0.0/0
INETOUT all -- 0.0.0.0/0 0.0.0.0/0

Chain CHECKFLAGS (2 references)
target prot opt source destination
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x29 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `Posible NMAP-XMAS:'
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x29
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x06 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `Posible SYN/RST:'
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x06
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x03/0x03 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `Posible SYN/FIN:'
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x03/0x03
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp option=64 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `Bogus TCP FLAG 64'
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp option=64
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp option=128 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `Bogus TCP FLAG 128'
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp option=128
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:31337 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `Back Orifice:'
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:31337
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:20034 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `Back Orifice:'
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:20034
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:27665 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `Trinoo:'
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:27665
LOG udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:27665 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `Trinoo:'
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:27665
INETIN all -- 0.0.0.0/0 0.0.0.0/0

Chain INETIN (3 references)
target prot opt source destination
LDROP all -- 10.0.0.0/8 0.0.0.0/0
LDROP all -- 172.16.0.0/12 0.0.0.0/0
LDROP all -- 192.168.0.0/16 0.0.0.0/0
LDROP all -- 224.0.0.0/4 0.0.0.0/0
LDROP all -- 240.0.0.0/5 0.0.0.0/0
LDROP all -- 10.0.0.0/8 0.0.0.0/0
LDROP all -- 172.16.0.0/12 0.0.0.0/0
LDROP all -- 192.168.0.0/16 0.0.0.0/0
LDROP all -- 224.0.0.0/4 0.0.0.0/0
LDROP all -- 240.0.0.0/5 0.0.0.0/0
LDROP all -- 0.0.0.0/8 0.0.0.0/0
LDROP all -- 1.0.0.0/8 0.0.0.0/0
LDROP all -- 2.0.0.0/8 0.0.0.0/0
LDROP all -- 5.0.0.0/8 0.0.0.0/0
LDROP all -- 7.0.0.0/8 0.0.0.0/0
LDROP all -- 23.0.0.0/8 0.0.0.0/0
LDROP all -- 27.0.0.0/8 0.0.0.0/0
LDROP all -- 31.0.0.0/8 0.0.0.0/0
LDROP all -- 36.0.0.0/8 0.0.0.0/0
LDROP all -- 37.0.0.0/8 0.0.0.0/0
LDROP all -- 39.0.0.0/8 0.0.0.0/0
LDROP all -- 41.0.0.0/8 0.0.0.0/0
LDROP all -- 42.0.0.0/8 0.0.0.0/0
LDROP all -- 58.0.0.0/8 0.0.0.0/0
LDROP all -- 59.0.0.0/8 0.0.0.0/0
LDROP all -- 60.0.0.0/8 0.0.0.0/0
LDROP all -- 67.0.0.0/8 0.0.0.0/0
LDROP all -- 68.0.0.0/8 0.0.0.0/0
LDROP all -- 69.0.0.0/8 0.0.0.0/0
LDROP all -- 70.0.0.0/8 0.0.0.0/0
LDROP all -- 71.0.0.0/8 0.0.0.0/0
LDROP all -- 72.0.0.0/8 0.0.0.0/0
LDROP all -- 73.0.0.0/8 0.0.0.0/0
LDROP all -- 74.0.0.0/8 0.0.0.0/0
LDROP all -- 75.0.0.0/8 0.0.0.0/0
LDROP all -- 76.0.0.0/8 0.0.0.0/0
LDROP all -- 77.0.0.0/8 0.0.0.0/0
LDROP all -- 78.0.0.0/8 0.0.0.0/0
LDROP all -- 79.0.0.0/8 0.0.0.0/0
LDROP all -- 82.0.0.0/8 0.0.0.0/0
LDROP all -- 83.0.0.0/8 0.0.0.0/0
LDROP all -- 84.0.0.0/8 0.0.0.0/0
LDROP all -- 85.0.0.0/8 0.0.0.0/0
LDROP all -- 86.0.0.0/8 0.0.0.0/0
LDROP all -- 87.0.0.0/8 0.0.0.0/0
LDROP all -- 88.0.0.0/8 0.0.0.0/0
LDROP all -- 89.0.0.0/8 0.0.0.0/0
LDROP all -- 90.0.0.0/8 0.0.0.0/0
LDROP all -- 91.0.0.0/8 0.0.0.0/0
LDROP all -- 92.0.0.0/8 0.0.0.0/0
LDROP all -- 93.0.0.0/8 0.0.0.0/0
LDROP all -- 94.0.0.0/8 0.0.0.0/0
LDROP all -- 95.0.0.0/8 0.0.0.0/0
LDROP all -- 96.0.0.0/8 0.0.0.0/0
LDROP all -- 97.0.0.0/8 0.0.0.0/0
LDROP all -- 98.0.0.0/8 0.0.0.0/0
LDROP all -- 99.0.0.0/8 0.0.0.0/0
LDROP all -- 100.0.0.0/8 0.0.0.0/0
LDROP all -- 101.0.0.0/8 0.0.0.0/0
LDROP all -- 102.0.0.0/8 0.0.0.0/0
LDROP all -- 103.0.0.0/8 0.0.0.0/0
LDROP all -- 104.0.0.0/8 0.0.0.0/0
LDROP all -- 105.0.0.0/8 0.0.0.0/0
LDROP all -- 106.0.0.0/8 0.0.0.0/0
LDROP all -- 107.0.0.0/8 0.0.0.0/0
LDROP all -- 108.0.0.0/8 0.0.0.0/0
LDROP all -- 109.0.0.0/8 0.0.0.0/0
LDROP all -- 110.0.0.0/8 0.0.0.0/0
LDROP all -- 111.0.0.0/8 0.0.0.0/0
LDROP all -- 112.0.0.0/8 0.0.0.0/0
LDROP all -- 113.0.0.0/8 0.0.0.0/0
LDROP all -- 114.0.0.0/8 0.0.0.0/0
LDROP all -- 115.0.0.0/8 0.0.0.0/0
LDROP all -- 116.0.0.0/8 0.0.0.0/0
LDROP all -- 117.0.0.0/8 0.0.0.0/0
LDROP all -- 118.0.0.0/8 0.0.0.0/0
LDROP all -- 119.0.0.0/8 0.0.0.0/0
LDROP all -- 120.0.0.0/8 0.0.0.0/0
LDROP all -- 121.0.0.0/8 0.0.0.0/0
LDROP all -- 122.0.0.0/8 0.0.0.0/0
LDROP all -- 123.0.0.0/8 0.0.0.0/0
LDROP all -- 124.0.0.0/8 0.0.0.0/0
LDROP all -- 125.0.0.0/8 0.0.0.0/0
LDROP all -- 126.0.0.0/8 0.0.0.0/0
LDROP all -- 127.0.0.0/8 0.0.0.0/0
LDROP all -- 197.0.0.0/8 0.0.0.0/0
LDROP all -- 201.0.0.0/8 0.0.0.0/0
LDROP all -- 219.0.0.0/8 0.0.0.0/0
LDROP all -- 220.0.0.0/8 0.0.0.0/0
LDROP all -- 221.0.0.0/8 0.0.0.0/0
LDROP all -- 222.0.0.0/8 0.0.0.0/0
LDROP all -- 223.0.0.0/8 0.0.0.0/0
LDROP all -- 240.0.0.0/8 0.0.0.0/0
LDROP all -- 241.0.0.0/8 0.0.0.0/0
LDROP all -- 242.0.0.0/8 0.0.0.0/0
LDROP all -- 243.0.0.0/8 0.0.0.0/0
LDROP all -- 244.0.0.0/8 0.0.0.0/0
LDROP all -- 245.0.0.0/8 0.0.0.0/0
LDROP all -- 246.0.0.0/8 0.0.0.0/0
LDROP all -- 247.0.0.0/8 0.0.0.0/0
LDROP all -- 248.0.0.0/8 0.0.0.0/0
LDROP all -- 249.0.0.0/8 0.0.0.0/0
LDROP all -- 250.0.0.0/8 0.0.0.0/0
LDROP all -- 251.0.0.0/8 0.0.0.0/0
LDROP all -- 252.0.0.0/8 0.0.0.0/0
LDROP all -- 253.0.0.0/8 0.0.0.0/0
LDROP all -- 254.0.0.0/8 0.0.0.0/0
TREJECT all -- 0.0.0.0/0 0.0.0.0/0 state INVALID
UDPACCEPT udp -- 194.109.137.130 0.0.0.0/0 udp dpt:53
TCPACCEPT tcp -- 194.109.137.130 0.0.0.0/0 tcp dpt:53
UDPACCEPT udp -- 194.109.137.130 0.0.0.0/0 udp dpt:53
TCPACCEPT tcp -- 194.109.137.130 0.0.0.0/0 tcp dpt:53
UDPACCEPT udp -- 213.84.192.197 0.0.0.0/0 udp dpt:53
TCPACCEPT tcp -- 213.84.192.197 0.0.0.0/0 tcp dpt:53
UDPACCEPT udp -- 213.84.192.197 0.0.0.0/0 udp dpt:53
TCPACCEPT tcp -- 213.84.192.197 0.0.0.0/0 tcp dpt:53
UDPACCEPT udp -- 63.117.39.22 0.0.0.0/0 udp dpt:53
TCPACCEPT tcp -- 63.117.39.22 0.0.0.0/0 tcp dpt:53
UDPACCEPT udp -- 63.117.39.22 0.0.0.0/0 udp dpt:53
TCPACCEPT tcp -- 63.117.39.22 0.0.0.0/0 tcp dpt:53
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8 limit: avg 1/sec burst 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp !type 8
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:25
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:67
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:68
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:69
UDPACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53
UDPACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:67
UDPACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:68
UDPACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:69
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state ESTABLISHED
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpts:1024:65535 state RELATED
UDPACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpts:1024:65535 state RELATED
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state ESTABLISHED
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpts:1024:65535 state RELATED
UDPACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpts:1024:65535 state RELATED
TREJECT all -- 0.0.0.0/0 0.0.0.0/0

Chain INETOUT (2 references)
target prot opt source destination
LDROP all -- 0.0.0.0/0 10.0.0.0/8
LDROP all -- 0.0.0.0/0 172.16.0.0/12
LDROP all -- 0.0.0.0/0 192.168.0.0/16
LDROP all -- 0.0.0.0/0 224.0.0.0/4
LDROP all -- 0.0.0.0/0 240.0.0.0/5
LDROP all -- 0.0.0.0/0 10.0.0.0/8
LDROP all -- 0.0.0.0/0 172.16.0.0/12
LDROP all -- 0.0.0.0/0 192.168.0.0/16
LDROP all -- 0.0.0.0/0 224.0.0.0/4
LDROP all -- 0.0.0.0/0 240.0.0.0/5
LDROP all -- 0.0.0.0/0 0.0.0.0/8
LDROP all -- 0.0.0.0/0 1.0.0.0/8
LDROP all -- 0.0.0.0/0 2.0.0.0/8
LDROP all -- 0.0.0.0/0 5.0.0.0/8
LDROP all -- 0.0.0.0/0 7.0.0.0/8
LDROP all -- 0.0.0.0/0 23.0.0.0/8
LDROP all -- 0.0.0.0/0 27.0.0.0/8
LDROP all -- 0.0.0.0/0 31.0.0.0/8
LDROP all -- 0.0.0.0/0 36.0.0.0/8
LDROP all -- 0.0.0.0/0 37.0.0.0/8
LDROP all -- 0.0.0.0/0 39.0.0.0/8
LDROP all -- 0.0.0.0/0 41.0.0.0/8
LDROP all -- 0.0.0.0/0 42.0.0.0/8
LDROP all -- 0.0.0.0/0 58.0.0.0/8
LDROP all -- 0.0.0.0/0 59.0.0.0/8
LDROP all -- 0.0.0.0/0 60.0.0.0/8
LDROP all -- 0.0.0.0/0 67.0.0.0/8
LDROP all -- 0.0.0.0/0 68.0.0.0/8
LDROP all -- 0.0.0.0/0 69.0.0.0/8
LDROP all -- 0.0.0.0/0 70.0.0.0/8
LDROP all -- 0.0.0.0/0 71.0.0.0/8
LDROP all -- 0.0.0.0/0 72.0.0.0/8
LDROP all -- 0.0.0.0/0 73.0.0.0/8
LDROP all -- 0.0.0.0/0 74.0.0.0/8
LDROP all -- 0.0.0.0/0 75.0.0.0/8
LDROP all -- 0.0.0.0/0 76.0.0.0/8
LDROP all -- 0.0.0.0/0 77.0.0.0/8
LDROP all -- 0.0.0.0/0 78.0.0.0/8
LDROP all -- 0.0.0.0/0 79.0.0.0/8
LDROP all -- 0.0.0.0/0 82.0.0.0/8
LDROP all -- 0.0.0.0/0 83.0.0.0/8
LDROP all -- 0.0.0.0/0 84.0.0.0/8
LDROP all -- 0.0.0.0/0 85.0.0.0/8
LDROP all -- 0.0.0.0/0 86.0.0.0/8
LDROP all -- 0.0.0.0/0 87.0.0.0/8
LDROP all -- 0.0.0.0/0 88.0.0.0/8
LDROP all -- 0.0.0.0/0 89.0.0.0/8
LDROP all -- 0.0.0.0/0 90.0.0.0/8
LDROP all -- 0.0.0.0/0 91.0.0.0/8
LDROP all -- 0.0.0.0/0 92.0.0.0/8
LDROP all -- 0.0.0.0/0 93.0.0.0/8
LDROP all -- 0.0.0.0/0 94.0.0.0/8
LDROP all -- 0.0.0.0/0 95.0.0.0/8
LDROP all -- 0.0.0.0/0 96.0.0.0/8
LDROP all -- 0.0.0.0/0 97.0.0.0/8
LDROP all -- 0.0.0.0/0 98.0.0.0/8
LDROP all -- 0.0.0.0/0 99.0.0.0/8
LDROP all -- 0.0.0.0/0 100.0.0.0/8
LDROP all -- 0.0.0.0/0 101.0.0.0/8
LDROP all -- 0.0.0.0/0 102.0.0.0/8
LDROP all -- 0.0.0.0/0 103.0.0.0/8
LDROP all -- 0.0.0.0/0 104.0.0.0/8
LDROP all -- 0.0.0.0/0 105.0.0.0/8
LDROP all -- 0.0.0.0/0 106.0.0.0/8
LDROP all -- 0.0.0.0/0 107.0.0.0/8
LDROP all -- 0.0.0.0/0 108.0.0.0/8
LDROP all -- 0.0.0.0/0 109.0.0.0/8
LDROP all -- 0.0.0.0/0 110.0.0.0/8
LDROP all -- 0.0.0.0/0 111.0.0.0/8
LDROP all -- 0.0.0.0/0 112.0.0.0/8
LDROP all -- 0.0.0.0/0 113.0.0.0/8
LDROP all -- 0.0.0.0/0 114.0.0.0/8
LDROP all -- 0.0.0.0/0 115.0.0.0/8
LDROP all -- 0.0.0.0/0 116.0.0.0/8
LDROP all -- 0.0.0.0/0 117.0.0.0/8
LDROP all -- 0.0.0.0/0 118.0.0.0/8
LDROP all -- 0.0.0.0/0 119.0.0.0/8
LDROP all -- 0.0.0.0/0 120.0.0.0/8
LDROP all -- 0.0.0.0/0 121.0.0.0/8
LDROP all -- 0.0.0.0/0 122.0.0.0/8
LDROP all -- 0.0.0.0/0 123.0.0.0/8
LDROP all -- 0.0.0.0/0 124.0.0.0/8
LDROP all -- 0.0.0.0/0 125.0.0.0/8
LDROP all -- 0.0.0.0/0 126.0.0.0/8
LDROP all -- 0.0.0.0/0 127.0.0.0/8
LDROP all -- 0.0.0.0/0 197.0.0.0/8
LDROP all -- 0.0.0.0/0 201.0.0.0/8
LDROP all -- 0.0.0.0/0 219.0.0.0/8
LDROP all -- 0.0.0.0/0 220.0.0.0/8
LDROP all -- 0.0.0.0/0 221.0.0.0/8
LDROP all -- 0.0.0.0/0 222.0.0.0/8
LDROP all -- 0.0.0.0/0 223.0.0.0/8
LDROP all -- 0.0.0.0/0 240.0.0.0/8
LDROP all -- 0.0.0.0/0 241.0.0.0/8
LDROP all -- 0.0.0.0/0 242.0.0.0/8
LDROP all -- 0.0.0.0/0 243.0.0.0/8
LDROP all -- 0.0.0.0/0 244.0.0.0/8
LDROP all -- 0.0.0.0/0 245.0.0.0/8
LDROP all -- 0.0.0.0/0 246.0.0.0/8
LDROP all -- 0.0.0.0/0 247.0.0.0/8
LDROP all -- 0.0.0.0/0 248.0.0.0/8
LDROP all -- 0.0.0.0/0 249.0.0.0/8
LDROP all -- 0.0.0.0/0 250.0.0.0/8
LDROP all -- 0.0.0.0/0 251.0.0.0/8
LDROP all -- 0.0.0.0/0 252.0.0.0/8
LDROP all -- 0.0.0.0/0 253.0.0.0/8
LDROP all -- 0.0.0.0/0 254.0.0.0/8
UDPACCEPT udp -- 0.0.0.0/0 194.109.137.130 udp spt:53
TCPACCEPT tcp -- 0.0.0.0/0 194.109.137.130 tcp spt:53 flags:!0x16/0x02
UDPACCEPT udp -- 0.0.0.0/0 194.109.137.130 udp spt:53
TCPACCEPT tcp -- 0.0.0.0/0 194.109.137.130 tcp spt:53 flags:!0x16/0x02
UDPACCEPT udp -- 0.0.0.0/0 213.84.192.197 udp spt:53
TCPACCEPT tcp -- 0.0.0.0/0 213.84.192.197 tcp spt:53 flags:!0x16/0x02
UDPACCEPT udp -- 0.0.0.0/0 213.84.192.197 udp spt:53
TCPACCEPT tcp -- 0.0.0.0/0 213.84.192.197 tcp spt:53 flags:!0x16/0x02
UDPACCEPT udp -- 0.0.0.0/0 63.117.39.22 udp spt:53
TCPACCEPT tcp -- 0.0.0.0/0 63.117.39.22 tcp spt:53 flags:!0x16/0x02
UDPACCEPT udp -- 0.0.0.0/0 63.117.39.22 udp spt:53
TCPACCEPT tcp -- 0.0.0.0/0 63.117.39.22 tcp spt:53 flags:!0x16/0x02
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:21
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:22
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:25
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:80
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:67
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:68
TCPACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:69
UDPACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:53
UDPACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:67
UDPACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:68
UDPACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:69
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0

Chain LDROP (214 references)
target prot opt source destination
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `TCP Dropped '
LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `UDP Dropped '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `ICMP Dropped '
LOG all -f 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 4 prefix `FRAGMENT Dropped '
DROP all -- 0.0.0.0/0 0.0.0.0/0

Chain LREJECT (0 references)
target prot opt source destination
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `TCP Rejected '
LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `UDP Rejected '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `ICMP Dropped '
LOG all -f 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 4 prefix `FRAGMENT Rejected '
REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable

Chain LTREJECT (0 references)
target prot opt source destination
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `TCP Rejected '
LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `UDP Rejected '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 6 prefix `ICMP Dropped '
LOG all -f 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 4 prefix `FRAGMENT Rejected '
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 reject-with tcp-reset
REJECT udp -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
DROP icmp -- 0.0.0.0/0 0.0.0.0/0
REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable

Chain TCPACCEPT (32 references)
target prot opt source destination
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02 limit: avg 40/sec burst 5
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02 limit: avg 1/sec burst 5 LOG flags 0 level 4 prefix `Possible SynFlood '
TREJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:!0x16/0x02
LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 4 prefix `Mismatch in TCPACCEPT '
TREJECT all -- 0.0.0.0/0 0.0.0.0/0

Chain TREJECT (5 references)
target prot opt source destination
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 reject-with tcp-reset
REJECT udp -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
DROP icmp -- 0.0.0.0/0 0.0.0.0/0
REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable

Chain UDPACCEPT (24 references)
target prot opt source destination
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0
LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 5 LOG flags 0 level 4 prefix `Mismatch on UDPACCEPT '
TREJECT all -- 0.0.0.0/0 0.0.0.0/0

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/



This archive was generated by hypermail 2b29 : Fri Nov 30 2001 - 21:00:19 EST