Reply To: Firewall rule to allow OpenDNS updater to work?

Home Page Forums Network Management Firewall, Traffic Shaping and Net Balancer Firewall rule to allow OpenDNS updater to work? Reply To: Firewall rule to allow OpenDNS updater to work?

#49776

knitatoms
Member
root@zeroshell root> iptables -L -v

Chain INPUT (policy DROP 1474 packets, 126K bytes)
pkts bytes target prot opt in out source destination
2539 248K SYS_INPUT all -- any any anywhere anywhere
0 0 SYS_HTTPS tcp -- any any anywhere anywhere tcp dpt:http
821 95124 SYS_HTTPS tcp -- any any anywhere anywhere tcp dpt:https
56 5000 SYS_SSH tcp -- any any anywhere anywhere tcp dpt:ssh
0 0 ACCEPT tcp -- BRIDGE00 any anywhere anywhere tcp spt:https dpt:https
0 0 ACCEPT tcp -- BRIDGE00 any anywhere anywhere tcp spt:ssh dpt:ssh
0 0 ACCEPT tcp -- any any anywhere anywhere tcp spt:https dpt:https

Chain FORWARD (policy DROP 12542 packets, 721K bytes)
pkts bytes target prot opt in out source destination
2208K 264M ACCEPT all -- BRIDGE00 any anywhere anywhere
3234K 3196M ACCEPT all -- any any anywhere anywhere state RELATED,ESTABLISHED

Chain OUTPUT (policy ACCEPT 2894 packets, 1104K bytes)
pkts bytes target prot opt in out source destination
3246 1133K SYS_OUTPUT all -- any any anywhere anywhere
150 9900 DROP all -- any ppp0 anywhere anywhere

Chain NetBalancer (0 references)
pkts bytes target prot opt in out source destination

Chain SYS_HTTPS (2 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- lo any anywhere anywhere
4057 376K ACCEPT all -- BRIDGE00 any 192.168.1.0/24 anywhere
0 0 ACCEPT all -- BRIDGE00 any 192.168.1.44 anywhere
2 96 DROP all -- any any anywhere anywhere

Chain SYS_INPUT (1 references)
pkts bytes target prot opt in out source destination
1011 115K ACCEPT all -- lo any anywhere anywhere
223 58755 ACCEPT udp -- any any anywhere anywhere udp spt:domain state ESTABLISHED
40 35390 ACCEPT tcp -- any any anywhere anywhere tcp spt:http state ESTABLISHED
400 48000 ACCEPT tcp -- any any anywhere anywhere tcp spt:8245 state ESTABLISHED
3399 258K ACCEPT udp -- any any anywhere anywhere udp spt:ntp state ESTABLISHED
23952 2117K RETURN all -- any any anywhere anywhere

Chain SYS_OUTPUT (1 references)
pkts bytes target prot opt in out source destination
1011 115K ACCEPT all -- any lo anywhere anywhere
333 23664 ACCEPT udp -- any any anywhere anywhere udp dpt:domain
40 2626 ACCEPT tcp -- any any anywhere anywhere tcp dpt:http
501 37852 ACCEPT tcp -- any any anywhere anywhere tcp dpt:8245
3606 274K ACCEPT udp -- any any anywhere anywhere udp dpt:ntp
12212 3493K RETURN all -- any any anywhere anywhere

Chain SYS_SSH (1 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- lo any anywhere anywhere
53 4832 ACCEPT all -- BRIDGE00 any 192.168.1.44 anywhere
8 444 DROP all -- any any anywhere anywhere


root@zeroshell root> iptables -t nat -L -v


Chain PREROUTING (policy ACCEPT 45557 packets, 3349K bytes)
pkts bytes target prot opt in out source destination
12247 664K DNAT tcp -- ppp0 any anywhere anywhere tcp dpt:lotusnote to:192.168.1.44:1352
0 0 DNAT udp -- ppp0 any anywhere anywhere udp dpt:sip-tls to:192.168.1.9:5061
0 0 DNAT udp -- ppp0 any anywhere anywhere udp dpt:sip to:192.168.1.7:5060
430 63541 DNAT udp -- ppp0 any anywhere anywhere udp dpts:ndmp:dnp to:192.168.1.7:10000-20000

Chain POSTROUTING (policy ACCEPT 2228 packets, 347K bytes)
pkts bytes target prot opt in out source destination
31734 2139K SNATVS all -- any any anywhere anywhere
29506 1793K MASQUERADE all -- any ppp0 anywhere anywhere

Chain OUTPUT (policy ACCEPT 6135 packets, 439K bytes)
pkts bytes target prot opt in out source destination

Chain SNATVS (1 references)
pkts bytes target prot opt in out source destination
root@zeroshell root>