Last active
November 19, 2024 15:32
-
-
Save ychaouche/9bee956a938785407044d26f8a1c9917 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # lsmod | grep geo | |
| xt_geoip 12558 2 | |
| x_tables 27392 17 xt_mark,xt_CT,xt_comment,ipt_ULOG,xt_recent,ip_tables,xt_tcpudp,xt_NFLOG,xt_geoip,xt_conntrack,xt_LOG,xt_multiport,iptable_filter,ipt_REJECT,iptable_mangle,xt_addrtype,iptable_raw | |
| # |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@messagerie-prep[10.10.10.19] ~ # cat /etc/shorewall/policy | |
| # | |
| # Shorewall version 4.0 - Sample Policy File for one-interface configuration. | |
| # Copyright (C) 2006 by the Shorewall Team | |
| # | |
| # This library is free software; you can redistribute it and/or | |
| # modify it under the terms of the GNU Lesser General Public | |
| # License as published by the Free Software Foundation; either | |
| # version 2.1 of the License, or (at your option) any later version. | |
| # | |
| # See the file README.txt for further details. | |
| #----------------------------------------------------------------------------- | |
| # For information about entries in this file, type "man shorewall-policy" | |
| ############################################################################### | |
| $FW net ACCEPT | |
| net $FW DROP INFO | |
| #all all DROP INFO | |
| root@messagerie-prep[10.10.10.19] ~ # |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #ACTION SOURCE DEST PROTO DEST PORTS | |
| ?SECTION NEW | |
| ACCEPT net:192.168.0.0/16 $FW all | |
| ACCEPT net:172.16.0.0/12 $FW all | |
| ACCEPT net:10.10.10.0/24 $FW all | |
| ACCEPT net:^[DZ,US,TN] $FW all | |
| DROP net:^[CN] $FW all | |
| ACCEPT net $FW tcp <ports...>,80,443 | |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@messagerie-prep[10.10.10.19] ~ # tcpdump -i eth0 -l -n net '(221.0.0.0/8 or 202.0.0.0/8 or 125.0.0.0/8 or 38.0.0.0/8 or 112.0.0.0/8)' | |
| tcpdump: verbose output suppressed, use -v or -vv for full protocol decode | |
| listening on eth0, link-type EN10MB (Ethernet), capture size 262144 bytes | |
| 16:30:18.452838 IP 221.226.180.114.55317 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:20.364876 IP 112.3.26.214.59047 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:20.608104 IP 112.25.205.17.59047 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:20.627622 IP 112.25.252.20.42211 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:20.747335 IP 112.46.234.250.42211 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:20.788270 IP 221.180.10.139.42211 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:20.821253 IP 221.180.10.140.42211 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:20.908366 IP 112.36.251.76.42211 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:21.156093 IP 112.3.58.62.42211 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:21.164812 IP 112.4.66.210.42211 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:21.240302 IP 221.179.137.137.42211 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:21.315322 IP 221.181.213.17.42211 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:21.375032 IP 221.130.29.150.18268 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:21.521256 IP 112.21.190.38.18268 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:22.009542 IP 112.25.240.67.18268 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:22.176283 IP 221.179.137.142.18268 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:22.317012 IP 221.12.101.50.18268 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:22.544149 IP 221.236.22.102.26946 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:23.613311 IP 221.180.10.141.26946 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:23.765856 IP 112.49.224.218.30313 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:24.912115 IP 112.21.190.40.36581 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:25.215578 IP 112.25.252.25.36581 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:25.231109 IP 112.38.160.74.36581 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:25.268650 IP 112.25.252.37.36581 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:25.736257 IP 221.12.134.75.38277 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:26.402079 IP 112.4.118.126.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:26.581182 IP 221.181.86.158.38277 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:26.754202 IP 221.181.213.18.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:26.891710 IP 112.65.130.246.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:26.899325 IP 112.53.204.92.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:27.106071 IP 221.195.189.244.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:27.417968 IP 221.181.140.78.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:27.422129 IP 112.65.128.230.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:27.583218 IP 112.6.213.143.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:27.814773 IP 221.130.17.66.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:27.864479 IP 112.47.43.214.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:27.910909 IP 221.178.202.78.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:27.997695 IP 221.178.193.125.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:27.999600 IP 112.6.174.225.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:28.156653 IP 112.5.76.23.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:28.256789 IP 221.180.10.138.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:28.303900 IP 221.179.137.140.31720 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:28.342203 IP 112.47.3.224.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:28.393971 IP 112.21.190.18.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:28.405634 IP 112.26.1.113.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:28.666263 IP 221.122.114.229.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:28.710090 IP 112.47.3.188.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:28.808924 IP 112.4.180.134.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:28.869013 IP 221.130.29.149.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:29.046500 IP 221.180.10.136.9742 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:29.050160 IP 112.6.174.224.31720 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:29.222650 IP 112.5.81.49.31720 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:29.334969 IP 221.181.236.184.31720 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:29.621235 IP 112.47.43.167.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:29.789272 IP 221.1.212.22.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:30.089623 IP 221.179.137.141.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:30.089710 IP 112.53.142.81.31720 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:30.128547 IP 112.5.62.132.31720 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:30.128578 IP 112.21.190.42.35431 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:30.547673 IP 221.130.29.145.17739 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:30.728821 IP 221.180.10.137.31720 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:31.420105 IP 112.49.25.149.31720 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:31.593010 IP 112.28.237.118.31720 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:31.807531 IP 221.179.56.222.17739 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:33.017756 IP 112.64.186.90.43507 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:30:33.840058 IP 221.179.137.139.3190 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:20.208937 IP 221.4.173.34.46757 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:21.893466 IP 221.236.22.102.48993 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:24.363357 IP 112.91.176.172.20947 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:26.395986 IP 221.6.112.10.29306 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:26.908189 IP 221.6.189.74.20947 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:27.381992 IP 221.6.189.82.60696 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:27.549818 IP 112.8.187.130.38347 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:27.803986 IP 221.6.202.110.60696 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:28.180927 IP 221.236.23.214.44690 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:28.236181 IP 221.6.189.98.44690 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:28.261935 IP 221.236.22.161.38347 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:28.829954 IP 221.236.23.215.44690 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:29.105973 IP 112.80.29.22.60696 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:30.107991 IP 112.84.253.222.31802 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:30.374823 IP 112.94.5.152.60696 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:31.254450 IP 112.7.225.88.60696 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:31.324702 IP 112.94.5.224.20446 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| 16:31:34.389301 IP 221.6.189.158.49038 > 10.10.10.19.80: Flags [S], seq 0, win 53270, length 0 | |
| ^D |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment