Reply To: Firewall rule ghost

Forums Network Management ZeroShell Firewall rule ghost Reply To: Firewall rule ghost

June 18, 2020 at 5:13 pm #66046
Alessandro Raiola
Participant

This is output of iptables -L

Chain INPUT (policy ACCEPT)
target     prot opt source               destination
SYS_GUI    all  --  anywhere             anywhere
SYS_INPUT  all  --  anywhere             anywhere
SYS_HTTPS  tcp  --  anywhere             anywhere             tcp dpt:http
SYS_HTTPS  tcp  --  anywhere             anywhere             tcp dpt:https
SYS_SSH    tcp  --  anywhere             anywhere             tcp dpt:ssh

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
SYS_OUTPUT  all  --  anywhere             anywhere

Chain NetBalancer (0 references)
target     prot opt source               destination

Chain SYS_DNS (2 references)
target     prot opt source               destination
ACCEPT     all  --  10.0.0.0/8           anywhere
ACCEPT     all  --  172.16.0.0/12        anywhere
ACCEPT     all  --  192.168.0.0/16       anywhere
ACCEPT     all  --  192.168.0.0/24       anywhere
ACCEPT     all  --  192.168.1.0/24       anywhere
ACCEPT     all  --  192.168.10.0/24      anywhere
ACCEPT     all  --  192.168.250.0/24     anywhere
DROP       all  --  anywhere             anywhere

Chain SYS_GUI (1 references)
target     prot opt source               destination
ACCEPT     tcp  --  192.168.0.60         anywhere             tcp dpt:12081

Chain SYS_HTTPS (2 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere
ACCEPT     all  --  10.0.0.0/8           anywhere
ACCEPT     all  --  172.16.0.0/12        anywhere
ACCEPT     all  --  192.168.0.0/16       anywhere
ACCEPT     all  --  192.168.0.0/24       anywhere
ACCEPT     all  --  192.168.1.0/24       anywhere
ACCEPT     all  --  192.168.10.0/24      anywhere
ACCEPT     all  --  192.168.250.0/24     anywhere
DROP       all  --  anywhere             anywhere

Chain SYS_INPUT (1 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere
ACCEPT     udp  --  anywhere             anywhere             udp spt:domain state ESTABLISHED
ACCEPT     tcp  --  anywhere             anywhere             tcp spt:domain state ESTABLISHED
SYS_DNS    udp  --  anywhere             anywhere             udp dpt:domain
SYS_DNS    tcp  --  anywhere             anywhere             tcp dpt:domain
ACCEPT     tcp  --  anywhere             anywhere             tcp spt:http state ESTABLISHED
ACCEPT     tcp  --  anywhere             anywhere             tcp spt:8245 state ESTABLISHED
ACCEPT     udp  --  anywhere             anywhere             udp spt:ntp state ESTABLISHED
RETURN     all  --  anywhere             anywhere

Chain SYS_OUTPUT (1 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere
ACCEPT     udp  --  anywhere             anywhere             udp dpt:domain
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:http
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:8245
ACCEPT     udp  --  anywhere             anywhere             udp dpt:ntp
RETURN     all  --  anywhere             anywhere

Chain SYS_SSH (1 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere
ACCEPT     all  --  192.168.0.0/24       anywhere
ACCEPT     all  --  192.168.250.0/24     anywhere
DROP       all  --  anywhere             anywhere