From ea5708194ccd525ecd9e93f9e53ecae6018b0859 Mon Sep 17 00:00:00 2001 From: Frank Brehm Date: Tue, 16 Oct 2018 20:23:31 +0200 Subject: [PATCH] saving uncommitted changes in /etc prior to apt run --- iptables/rules.v4 | 34 ++++++++++++++++++---------------- iptables/rules.v6 | 18 +++++++++--------- 2 files changed, 27 insertions(+), 25 deletions(-) diff --git a/iptables/rules.v4 b/iptables/rules.v4 index 21f2951..5d06d4a 100644 --- a/iptables/rules.v4 +++ b/iptables/rules.v4 @@ -1,8 +1,8 @@ -# Generated by iptables-save v1.6.1 on Mon Oct 15 23:49:06 2018 +# Generated by iptables-save v1.6.1 on Tue Oct 16 00:21:02 2018 *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] -:OUTPUT ACCEPT [70:17009] +:OUTPUT ACCEPT [281:62474] :ssh_spam - [0:0] -A INPUT -i virbr0 -p udp -m udp --dport 53 -j ACCEPT -A INPUT -i virbr0 -p tcp -m tcp --dport 53 -j ACCEPT @@ -75,26 +75,28 @@ -A ssh_spam -s 93.183.207.0/24 -j DROP -A ssh_spam -s 106.240.0.0/12 -j DROP -A ssh_spam -s 58.208.0.0/13 -m comment --comment CHINANET-JS -j DROP +-A ssh_spam -s 118.120.0.0/14 -m comment --comment CHINANET-SC -j DROP +-A ssh_spam -s 122.226.181.160/27 -m comment --comment HANGZHOU-TIANJIAN -j DROP COMMIT -# Completed on Mon Oct 15 23:49:06 2018 -# Generated by iptables-save v1.6.1 on Mon Oct 15 23:49:06 2018 +# Completed on Tue Oct 16 00:21:02 2018 +# Generated by iptables-save v1.6.1 on Tue Oct 16 00:21:02 2018 *mangle -:PREROUTING ACCEPT [2390952:956348385] -:INPUT ACCEPT [2386571:956136688] -:FORWARD ACCEPT [506:38300] -:OUTPUT ACCEPT [1266823:209971073] -:POSTROUTING ACCEPT [1347695:219412193] +:PREROUTING ACCEPT [2426663:969162713] +:INPUT ACCEPT [2422166:968945708] +:FORWARD ACCEPT [515:38948] +:OUTPUT ACCEPT [1282552:212894303] +:POSTROUTING ACCEPT [1364970:222520227] -A POSTROUTING -o virbr0 -p udp -m udp --dport 68 -j CHECKSUM --checksum-fill -A POSTROUTING -o virbr0 -p udp -m udp --dport 68 -j CHECKSUM --checksum-fill -A POSTROUTING -o virbr0 -p udp -m udp --dport 68 -j CHECKSUM --checksum-fill COMMIT -# Completed on Mon Oct 15 23:49:06 2018 -# Generated by iptables-save v1.6.1 on Mon Oct 15 23:49:06 2018 +# Completed on Tue Oct 16 00:21:02 2018 +# Generated by iptables-save v1.6.1 on Tue Oct 16 00:21:02 2018 *nat -:PREROUTING ACCEPT [157427:48880613] -:INPUT ACCEPT [152316:48607199] -:OUTPUT ACCEPT [118292:17186995] -:POSTROUTING ACCEPT [116641:16784686] +:PREROUTING ACCEPT [159533:49771092] +:INPUT ACCEPT [154283:49490424] +:OUTPUT ACCEPT [120844:17566238] +:POSTROUTING ACCEPT [119159:17155954] -A POSTROUTING -s 192.168.122.0/24 -d 224.0.0.0/24 -j RETURN -A POSTROUTING -s 192.168.122.0/24 -d 255.255.255.255/32 -j RETURN -A POSTROUTING -s 192.168.122.0/24 ! -d 192.168.122.0/24 -p tcp -j MASQUERADE --to-ports 1024-65535 @@ -112,4 +114,4 @@ COMMIT -A POSTROUTING -s 192.168.122.0/24 ! -d 192.168.122.0/24 -j MASQUERADE -A POSTROUTING -o eth1 -j MASQUERADE COMMIT -# Completed on Mon Oct 15 23:49:06 2018 +# Completed on Tue Oct 16 00:21:02 2018 diff --git a/iptables/rules.v6 b/iptables/rules.v6 index ad724e3..8448f35 100644 --- a/iptables/rules.v6 +++ b/iptables/rules.v6 @@ -1,8 +1,8 @@ -# Generated by ip6tables-save v1.6.1 on Mon Oct 15 23:49:06 2018 +# Generated by ip6tables-save v1.6.1 on Tue Oct 16 00:21:02 2018 *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] -:OUTPUT ACCEPT [689:85197] +:OUTPUT ACCEPT [695:85927] :f_mail - [0:0] -A INPUT -m conntrack --ctstate ESTABLISHED -j ACCEPT -A INPUT -m conntrack --ctstate RELATED -j ACCEPT @@ -51,13 +51,13 @@ -A f_mail -j NFLOG --nflog-prefix "IPv6 F_MAIL Reject " --nflog-threshold 1 -A f_mail -j REJECT --reject-with icmp6-port-unreachable COMMIT -# Completed on Mon Oct 15 23:49:06 2018 -# Generated by ip6tables-save v1.6.1 on Mon Oct 15 23:49:06 2018 +# Completed on Tue Oct 16 00:21:02 2018 +# Generated by ip6tables-save v1.6.1 on Tue Oct 16 00:21:02 2018 *mangle -:PREROUTING ACCEPT [11068:3531070] -:INPUT ACCEPT [1931:312595] +:PREROUTING ACCEPT [11374:3621678] +:INPUT ACCEPT [2040:328327] :FORWARD ACCEPT [0:0] -:OUTPUT ACCEPT [689:85197] -:POSTROUTING ACCEPT [1265:163377] +:OUTPUT ACCEPT [695:85927] +:POSTROUTING ACCEPT [1276:164781] COMMIT -# Completed on Mon Oct 15 23:49:06 2018 +# Completed on Tue Oct 16 00:21:02 2018 -- 2.39.5