[ubuntu-it] firewall, sicurezza e porte aperte
Luca Waldner
fantasminox a gmail.com
Gio 19 Apr 2007 07:40:01 BST
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
on 18/04/2007 21:58, UccioLinux <ucciolinux a gmail.com> wrote:
Ecco il risultato di iptables -L, scusate la lunghezza e spero che si
riesca a decifrare, qui non è possibile formattare in maniera chiara...
Chain INPUT (policy DROP)
target prot opt source destination
REJECT tcp -- anywhere anywhere tcp
dpt:dict reject-with icmp-port-unreachable
ACCEPT all -- anywhere anywhere
icmp_in icmp -- anywhere anywhere
bad_tcp tcp -- anywhere anywhere
bad_udp udp -- anywhere anywhere
ok_tcp tcp -- anywhere anywhere
ok_udp udp -- anywhere anywhere
LOG all -- anywhere anywhere LOG level
warning prefix `Default drop:'
DROP all -- anywhere anywhere
Chain FORWARD (policy DROP)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
REJECT tcp -- anywhere anywhere tcp
dpt:dict reject-with icmp-port-unreachable
ACCEPT all -- anywhere anywhere
Chain bad_tcp (1 references)
target prot opt source destination
REJECT tcp -- !rfc-1918/24 anywhere multiport
dports www,ftp,ssh,10000 state NEW reject-with icmp-net-unreachable
REJECT tcp -- !rfc-1918/24 anywhere multiport
dports microsoft-ds,mysql state NEW reject-with icmp-net-unreachable
LOG tcp -- anywhere anywhere tcp
flags:!SYN,RST,ACK/SYN state NEW LOG level warning prefix `Nuova non
syn:'
REJECT tcp -- anywhere anywhere tcp
flags:!SYN,RST,ACK/SYN state NEW reject-with icmp-net-unreachable
LOG tcp -- anywhere anywhere state
INVALID LOG level warning prefix `Invalida:'
REJECT tcp -- anywhere anywhere state
INVALID reject-with icmp-net-unreachable
LOG tcp -- anywhere anywhere tcp
flags:FIN,SYN,RST,PSH,ACK,URG/FIN,PSH,URG limit: avg 5/min burst 5 LOG
level warning prefix `ScanPort NMAP-XMAS:'
REJECT tcp -- anywhere anywhere tcp
flags:FIN,SYN,RST,PSH,ACK,URG/FIN,PSH,URG reject-with
icmp-net-unreachable
LOG tcp -- anywhere anywhere tcp
flags:SYN,RST/SYN,RST limit: avg 5/min burst 5 LOG level warning
prefix `ScanPort SYN/RST:'
REJECT tcp -- anywhere anywhere tcp
flags:SYN,RST/SYN,RST reject-with icmp-net-unreachable
LOG tcp -- anywhere anywhere tcp
flags:FIN,SYN/FIN,SYN limit: avg 5/min burst 5 LOG level warning
prefix `ScanPort SYN/FIN:'
REJECT tcp -- anywhere anywhere tcp
flags:FIN,SYN/FIN,SYN reject-with icmp-net-unreachable
LOG tcp -- anywhere anywhere tcp
dpts:netbios-ns:netbios-ssn limit: avg 5/min burst 5 LOG level warning
prefix `Tentativo SMB:'
LOG tcp -- anywhere anywhere tcp
spts:netbios-ns:netbios-ssn limit: avg 5/min burst 5 LOG level warning
prefix `Tentativo SMB:'
REJECT tcp -- anywhere anywhere tcp
dpts:netbios-ns:netbios-ssn reject-with icmp-net-unreachable
REJECT tcp -- anywhere anywhere tcp
spts:netbios-ns:netbios-ssn reject-with icmp-net-unreachable
LOG tcp -- anywhere anywhere tcp
dpt:nfs limit: avg 5/min burst 5 LOG level warning prefix `Tentativo
NFS:'
LOG tcp -- anywhere anywhere tcp
spt:nfs limit: avg 5/min burst 5 LOG level warning prefix `Tentativo
NFS:'
REJECT tcp -- anywhere anywhere tcp
dpt:nfs reject-with icmp-net-unreachable
REJECT tcp -- anywhere anywhere tcp
spt:nfs reject-with icmp-net-unreachable
LOG tcp -- anywhere anywhere tcp
dpts:x11:6063 limit: avg 5/min burst 5 LOG level warning prefix
`Tentativo X:'
LOG tcp -- anywhere anywhere tcp
spts:x11:6063 limit: avg 5/min burst 5 LOG level warning prefix
`Tentativo X:'
REJECT tcp -- anywhere anywhere tcp
dpts:x11:6063 reject-with icmp-net-unreachable
REJECT tcp -- anywhere anywhere tcp
spts:x11:6063 reject-with icmp-net-unreachable
LOG tcp -- anywhere anywhere tcp
dpt:20034 limit: avg 5/min burst 5 LOG level warning prefix `Tentativo
NetBus2:'
LOG tcp -- anywhere anywhere tcp
spt:20034 limit: avg 5/min burst 5 LOG level warning prefix `Tentativo
NetBus2:'
REJECT tcp -- anywhere anywhere tcp
dpt:20034 reject-with icmp-net-unreachable
REJECT tcp -- anywhere anywhere tcp
spt:20034 reject-with icmp-net-unreachable
LOG tcp -- anywhere anywhere tcp
dpts:12345:12346 limit: avg 5/min burst 5 LOG level warning prefix
`Tentativo NetBus:'
LOG tcp -- anywhere anywhere tcp
spts:12345:12346 limit: avg 5/min burst 5 LOG level warning prefix
`Tentativo NetBus:'
REJECT tcp -- anywhere anywhere tcp
dpts:12345:12346 reject-with icmp-net-unreachable
REJECT tcp -- anywhere anywhere tcp
spts:12345:12346 reject-with icmp-net-unreachable
LOG tcp -- anywhere anywhere tcp
dpt:asp limit: avg 5/min burst 5 LOG level warning prefix `Tentativo
SubSeven:'
LOG tcp -- anywhere anywhere tcp
spt:asp limit: avg 5/min burst 5 LOG level warning prefix `Tentativo
SubSeven:'
REJECT tcp -- anywhere anywhere tcp
dpt:asp reject-with icmp-net-unreachable
REJECT tcp -- anywhere anywhere tcp
spt:asp reject-with icmp-net-unreachable
Chain bad_udp (1 references)
target prot opt source destination
Chain icmp_in (1 references)
target prot opt source destination
REJECT icmp -- anywhere anywhere icmp
echo-reply reject-with icmp-host-unreachable
REJECT icmp -- anywhere anywhere icmp
echo-request reject-with icmp-host-unreachable
REJECT icmp -- anywhere anywhere icmp
destination-unreachable reject-with icmp-host-unreachable
REJECT icmp -- anywhere anywhere icmp
redirect reject-with icmp-host-unreachable
REJECT icmp -- anywhere anywhere icmp
time-exceeded reject-with icmp-host-unreachable
LOG icmp -- anywhere anywhere LOG level
warning prefix `ICMP drop:'
DROP icmp -- anywhere anywhere
Chain ok_tcp (1 references)
target prot opt source destination
ACCEPT tcp -- rfc-1918/24 anywhere multiport
dports www,ftp,ssh,10000 state NEW
ACCEPT tcp -- anywhere anywhere tcp
flags:SYN,RST,ACK/SYN
ACCEPT tcp -- anywhere anywhere state
RELATED,ESTABLISHED
LOG tcp -- anywhere anywhere LOG level
warning prefix `ok_tcp drop:'
REJECT tcp -- anywhere anywhere
reject-with icmp-net-unreachable
Chain ok_udp (1 references)
target prot opt source destination
ACCEPT udp -- anywhere anywhere state
RELATED,ESTABLISHED
LOG udp -- anywhere anywhere LOG level
warning prefix `ok_udp drop:'
REJECT udp -- anywhere anywhere
reject-with icmp-net-unreachable
Qualche idea?
Ciao!
Luca
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFGJw68XiIw4bwnPRIRAprwAJ4y8wdFHRV0sheZMKWAEwo8Gvi76QCaAuwA
iL16d3DB1vedJWj5UNwRQG4=
=6qaV
-----END PGP SIGNATURE-----
Maggiori informazioni sulla lista
ubuntu-it