nixCraft Linux Forum - View Single Post

deltamails · #7 (**permalink**) 11-23-2006, 04:40 PM

# iptables -L -n
Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain FORWARD (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

------------------------------++
g[root@jupiter ~]# sh -x fw.start
++ cat /root/allbadips.txt
++ grep -v -E '^#'
+ BADIPS='81.170.239.78
69.115.181.157
85.147.68.248
84.145.173.106
69.115.181.157
85.147.68.248
84.145.173.106
69.231.44.193
80.100.68.193
213.173.255.181
84.168.52.36
84.168.19.66
84.168.40.44
84.168.31.17
193.217.29.213'
+ myIP=66.235.251.194
+ ip=66.235.251.194
+ NSIP='66.235.251.138 66.235.251.141'
+ service iptables stop
+ iptables -P INPUT DROP
+ iptables -P OUTPUT DROP
+ iptables -P FORWARD DROP
+ iptables -A INPUT -i venet0 -s 127.0.0.1 -j ACCEPT
+ iptables -A OUTPUT -o venet0 -d 127.0.0.1 -j ACCEPT
+ iptables -A INPUT -i lo -s 127.0.0.1 -j ACCEPT
+ iptables -A OUTPUT -o lo -d 127.0.0.1 -j ACCEPT
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 81.170.239.78 -j DROP
+ iptables -A OUTPUT -d 81.170.239.78 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 69.115.181.157 -j DROP
+ iptables -A OUTPUT -d 69.115.181.157 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 85.147.68.248 -j DROP
+ iptables -A OUTPUT -d 85.147.68.248 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 84.145.173.106 -j DROP
+ iptables -A OUTPUT -d 84.145.173.106 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 69.115.181.157 -j DROP
+ iptables -A OUTPUT -d 69.115.181.157 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 85.147.68.248 -j DROP
+ iptables -A OUTPUT -d 85.147.68.248 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 84.145.173.106 -j DROP
+ iptables -A OUTPUT -d 84.145.173.106 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 69.231.44.193 -j DROP
+ iptables -A OUTPUT -d 69.231.44.193 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 80.100.68.193 -j DROP
+ iptables -A OUTPUT -d 80.100.68.193 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 213.173.255.181 -j DROP
+ iptables -A OUTPUT -d 213.173.255.181 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 84.168.52.36 -j DROP
+ iptables -A OUTPUT -d 84.168.52.36 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 84.168.19.66 -j DROP
+ iptables -A OUTPUT -d 84.168.19.66 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 84.168.40.44 -j DROP
+ iptables -A OUTPUT -d 84.168.40.44 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 84.168.31.17 -j DROP
+ iptables -A OUTPUT -d 84.168.31.17 -j DROP
+ for ipb in '$BADIPS'
+ iptables -A INPUT -s 193.217.29.213 -j DROP
+ iptables -A OUTPUT -d 193.217.29.213 -j DROP
+ iptables -N flood
+ iptables -A INPUT -p tcp --syn -j flood
+ iptables -A flood -m limit --limit 1/s --limit-burst 3 -j RETURN
iptables: No chain/target/match by that name
+ iptables -A flood -j DROP
+ iptables -A INPUT -f -j DROP
+ iptables -A INPUT -p tcp --tcp-flags ALL ALL -j DROP
+ iptables -A INPUT -p tcp --tcp-flags ALL NONE -j DROP
+ iptables -A INPUT -s 0.0.0.0/8 -j DROP
+ iptables -A INPUT -s 127.0.0.0/8 -j DROP
+ iptables -A INPUT -s 10.0.0.0/8 -j DROP
+ iptables -A INPUT -s 172.16.0.0/12 -j DROP
+ iptables -A INPUT -s 192.168.0.0/16 -j DROP
+ iptables -A INPUT -s 224.0.0.0/3 -j DROP
+ iptables -A INPUT -p tcp -s 0/0 --sport 1024:65535 -d 66.235.251.194 --dport 80 -j ACCEPT
+ iptables -A OUTPUT -p tcp -s 66.235.251.194 --sport 80 -d 0/0 --dport 1024:65535 -j ACCEPT
+ iptables -A INPUT -p tcp -s 0/0 --sport 1024:65535 -d 66.235.251.194 --dport 443 -j ACCEPT
+ iptables -A OUTPUT -p tcp -s 66.235.251.194 --sport 443 -d 0/0 --dport 1024:65535 -j ACCEPT
+ iptables -A INPUT -p tcp -s 0/0 --sport 1024:65535 -d 66.235.251.194 --dport 25 -j ACCEPT
+ iptables -A OUTPUT -p tcp -s 66.235.251.194 --sport 25 -d 0/0 --dport 1024:65535 -j ACCEPT
+ iptables -A INPUT -p tcp -s 0/0 --sport 513:65535 -d 66.235.251.194 --dport 22 -j ACCEPT
+ iptables -A OUTPUT -p tcp -s 66.235.251.194 --sport 22 -d 0/0 --dport 513:65535 -j ACCEPT
+ for mip in '$NSIP'
+ iptables -A OUTPUT -p udp -s 66.235.251.194 --sport 1024:65535 -d 66.235.251.138 --dport 53 -j ACCEPT
+ iptables -A INPUT -p udp -s 66.235.251.138 --sport 53 -d 66.235.251.194 --dport 1024:65535 -j ACCEPT
+ iptables -A OUTPUT -p tcp -s 66.235.251.194 --sport 1024:65535 -d 66.235.251.138 --dport 53 -j ACCEPT
+ iptables -A INPUT -p tcp -s 66.235.251.138 --sport 53 -d 66.235.251.194 --dport 1024:65535 -j ACCEPT
+ for mip in '$NSIP'
+ iptables -A OUTPUT -p udp -s 66.235.251.194 --sport 1024:65535 -d 66.235.251.141 --dport 53 -j ACCEPT
+ iptables -A INPUT -p udp -s 66.235.251.141 --sport 53 -d 66.235.251.194 --dport 1024:65535 -j ACCEPT
+ iptables -A OUTPUT -p tcp -s 66.235.251.194 --sport 1024:65535 -d 66.235.251.141 --dport 53 -j ACCEPT
+ iptables -A INPUT -p tcp -s 66.235.251.141 --sport 53 -d 66.235.251.194 --dport 1024:65535 -j ACCEPT
+ iptables -A OUTPUT -p tcp -s 66.235.251.194 --sport 1024:65535 -d 0/0 --dport 25 -j ACCEPT
+ iptables -A INPUT -p tcp -s 0/0 --sport 25 -d 66.235.251.194 --dport 1024:65535 -j ACCEPT
+ iptables -A OUTPUT -p tcp -s 66.235.251.194 --sport 513:65535 -d 0/0 --dport 22 -j ACCEPT
+ iptables -A INPUT -p tcp -s 0/0 --sport 22 -d 66.235.251.194 --dport 513:65535 -j ACCEPT
+ iptables -A INPUT -s 0/0 -j DROP
+ iptables -A OUTPUT -d 0/0 -j DROP
------------------

Thread: DDOS attack on VPS!!!! View Single Post

Thread: DDOS attack on VPS!!!!
View Single Post