A DOCKER-ISOLATION-STAGE-2 -o docker0 -j DROP A DOCKER-ISOLATION-STAGE-1 -i docker0 ! -o docker0 -j DOCKER-ISOLATION-STAGE-2 A OUTPUT -m state -state INVALID -j DROP A OUTPUT -p tcp -m tcp ! -tcp-flags FIN,SYN,RST,ACK SYN -m state -state NEW - j REJECT -reject-with tcp-reset A OUTPUT -m state -state RELATED,ESTABLISHED -j ACCEPT A FORWARD -m state -state INVALID -j DROP A FORWARD -p tcp -m tcp ! -tcp-flags FIN,SYN,RST,ACK SYN -m state -state NEW -j REJECT -reject-with tcp-reset A FORWARD -m state -state RELATED,ESTABLISHED -j ACCEPT A FORWARD -i docker0 -o docker0 -j ACCEPT A FORWARD -i docker0 ! -o docker0 -j ACCEPT A FORWARD -o docker0 -m conntrack -ctstate RELATED,ESTABLISHED -j ACCEPT A INPUT -p icmp -m icmp -icmp-type 8/0 -j ACCEPT A INPUT -p tcp -m tcp -dport 53 -j ACCEPT A INPUT -p udp -m udp -dport 53 -j ACCEPT A INPUT -p tcp -m tcp -dport 445 -j ACCEPT A INPUT -p tcp -m tcp -dport 139 -j ACCEPT A INPUT -p udp -m udp -dport 138 -j ACCEPT A INPUT -p udp -m udp -dport 137 -j ACCEPT A INPUT -p tcp -m tcp -dport 5432 -j ACCEPT A INPUT -p tcp -m tcp -dport 3306 -j ACCEPT A INPUT -p tcp -m tcp -dport 106 -j ACCEPT A INPUT -p tcp -m tcp -dport 993 -j ACCEPT A INPUT -p tcp -m tcp -dport 143 -j ACCEPT A INPUT -p tcp -m tcp -dport 995 -j ACCEPT A INPUT -p tcp -m tcp -dport 110 -j ACCEPT A INPUT -p tcp -m tcp -dport 465 -j ACCEPT A INPUT -p tcp -m tcp -dport 25 -j ACCEPT A INPUT -p tcp -m tcp -dport 587 -j ACCEPT A INPUT -p tcp -m tcp -dport 22 -j ACCEPT A INPUT -p tcp -m tcp -dport 21 -j ACCEPT A INPUT -p tcp -m tcp -dport 443 -j ACCEPT A INPUT -p tcp -m tcp -dport 80 -j ACCEPT A INPUT -p tcp -m tcp -dport 8880 -j ACCEPT A INPUT -p tcp -m tcp -dport 8443 -j ACCEPT A INPUT -p tcp -m tcp -dport 8447 -j ACCEPT A INPUT -p tcp -m tcp -dport 49152:65535 -j ACCEPT A INPUT -p udp -m udp -dport 68 -j ACCEPT A INPUT -p tcp -m tcp -dport 25565 -j ACCEPT A INPUT -p tcp -m tcp ! -tcp-flags FIN,SYN,RST,ACK SYN -m state -state NEW -j REJECT -reject-with tcp-reset A INPUT -m state -state RELATED,ESTABLISHED -j ACCEPT
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |