Skip to content

Instantly share code, notes, and snippets.

@yifan-gu

yifan-gu/bad.txt

Last active April 6, 2016 20:20
Show Gist options
  • Save yifan-gu/63894c604934238d180e418aced58dfd to your computer and use it in GitHub Desktop.
Save yifan-gu/63894c604934238d180e418aced58dfd to your computer and use it in GitHub Desktop.
Download ZIP
iptables-save result
Raw
bad.txt
# ConfigureCBR0=false, network-plugin=kubenet, service IPs are not reachable
# Generated by iptables-save v1.4.21 on Wed Apr 6 20:05:53 2016
*filter
:INPUT ACCEPT [91:269104]
:FORWARD ACCEPT [13:1422]
:OUTPUT ACCEPT [89:268678]
:KUBE-SERVICES - [0:0]
-A OUTPUT -m comment --comment "kubernetes service portals" -j KUBE-SERVICES
COMMIT
# Completed on Wed Apr 6 20:05:53 2016
# Generated by iptables-save v1.4.21 on Wed Apr 6 20:05:53 2016
*nat
:PREROUTING ACCEPT [5:425]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [2:120]
:POSTROUTING ACCEPT [0:0]
:CNI-kubenet - [0:0]
:KUBE-MARK-MASQ - [0:0]
:KUBE-NODEPORTS - [0:0]
:KUBE-POSTROUTING - [0:0]
:KUBE-SEP-222YD7DQOUNKFRLL - [0:0]
:KUBE-SEP-5BME6LXGYWTVD5D3 - [0:0]
:KUBE-SEP-5QD3CDT47352FOW3 - [0:0]
:KUBE-SEP-6W3Q6JSML6KNIHZA - [0:0]
:KUBE-SEP-RQOYX7NCZFYQWC23 - [0:0]
:KUBE-SEP-UDU5ETJFU43KPV77 - [0:0]
:KUBE-SERVICES - [0:0]
:KUBE-SVC-4N57TFCL4MD7ZTDA - [0:0]
:KUBE-SVC-ERIFXISQEP7F7OF4 - [0:0]
:KUBE-SVC-NPX46M4PTMTKRN6Y - [0:0]
:KUBE-SVC-TCOU7JCQXEZGVUNU - [0:0]
:KUBE-SVC-XGLOHA7QRQ3V22RZ - [0:0]
:KUBE-SVC-XP4WJ6VSLGWALMW5 - [0:0]
:RKT-PFWD-DNAT-21d46439 - [0:0]
:RKT-PFWD-DNAT-47870d21 - [0:0]
:RKT-PFWD-DNAT-9845a2ed - [0:0]
:RKT-PFWD-DNAT-cd9f1c16 - [0:0]
:RKT-PFWD-SNAT-21d46439 - [0:0]
:RKT-PFWD-SNAT-47870d21 - [0:0]
:RKT-PFWD-SNAT-9845a2ed - [0:0]
:RKT-PFWD-SNAT-cd9f1c16 - [0:0]
-A PREROUTING -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-21d46439
-A PREROUTING -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-9845a2ed
-A PREROUTING -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-cd9f1c16
-A PREROUTING -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-47870d21
-A PREROUTING -m comment --comment "kubernetes service portals" -j KUBE-SERVICES
-A OUTPUT -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-21d46439
-A OUTPUT -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-9845a2ed
-A OUTPUT -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-cd9f1c16
-A OUTPUT -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-47870d21
-A OUTPUT -m comment --comment "kubernetes service portals" -j KUBE-SERVICES
-A POSTROUTING -s 127.0.0.1/32 ! -d 127.0.0.1/32 -j RKT-PFWD-SNAT-21d46439
-A POSTROUTING -s 127.0.0.1/32 ! -d 127.0.0.1/32 -j RKT-PFWD-SNAT-9845a2ed
-A POSTROUTING -s 127.0.0.1/32 ! -d 127.0.0.1/32 -j RKT-PFWD-SNAT-cd9f1c16
-A POSTROUTING -s 127.0.0.1/32 ! -d 127.0.0.1/32 -j RKT-PFWD-SNAT-47870d21
-A POSTROUTING -m comment --comment "kubernetes postrouting rules" -j KUBE-POSTROUTING
-A POSTROUTING -s 10.244.1.0/24 -j CNI-kubenet
-A CNI-kubenet -d 10.244.1.0/24 -j ACCEPT
-A CNI-kubenet ! -d 224.0.0.0/4 -j MASQUERADE
-A KUBE-MARK-MASQ -j MARK --set-xmark 0x4000/0x4000
-A KUBE-NODEPORTS -p tcp -m comment --comment "kube-system/default-http-backend:http" -m tcp --dport 30869 -j KUBE-MARK-MASQ
-A KUBE-NODEPORTS -p tcp -m comment --comment "kube-system/default-http-backend:http" -m tcp --dport 30869 -j KUBE-SVC-XP4WJ6VSLGWALMW5
-A KUBE-POSTROUTING -m comment --comment "kubernetes service traffic requiring SNAT" -m mark --mark 0x4000/0x4000 -j MASQUERADE
-A KUBE-SEP-222YD7DQOUNKFRLL -s 10.244.1.4/32 -m comment --comment "kube-system/kube-dns:dns" -j KUBE-MARK-MASQ
-A KUBE-SEP-222YD7DQOUNKFRLL -p udp -m comment --comment "kube-system/kube-dns:dns" -m udp -j DNAT --to-destination 10.244.1.4:53
-A KUBE-SEP-5BME6LXGYWTVD5D3 -s 10.244.1.4/32 -m comment --comment "kube-system/kube-dns:dns-tcp" -j KUBE-MARK-MASQ
-A KUBE-SEP-5BME6LXGYWTVD5D3 -p tcp -m comment --comment "kube-system/kube-dns:dns-tcp" -m tcp -j DNAT --to-destination 10.244.1.4:53
-A KUBE-SEP-5QD3CDT47352FOW3 -s 10.244.1.2/32 -m comment --comment "kube-system/kubernetes-dashboard:" -j KUBE-MARK-MASQ
-A KUBE-SEP-5QD3CDT47352FOW3 -p tcp -m comment --comment "kube-system/kubernetes-dashboard:" -m tcp -j DNAT --to-destination 10.244.1.2:9090
-A KUBE-SEP-6W3Q6JSML6KNIHZA -s 10.244.1.7/32 -m comment --comment "kube-system/default-http-backend:http" -j KUBE-MARK-MASQ
-A KUBE-SEP-6W3Q6JSML6KNIHZA -p tcp -m comment --comment "kube-system/default-http-backend:http" -m tcp -j DNAT --to-destination 10.244.1.7:8080
-A KUBE-SEP-RQOYX7NCZFYQWC23 -s 10.244.1.10/32 -m comment --comment "default/nginx:" -j KUBE-MARK-MASQ
-A KUBE-SEP-RQOYX7NCZFYQWC23 -p tcp -m comment --comment "default/nginx:" -m tcp -j DNAT --to-destination 10.244.1.10:80
-A KUBE-SEP-UDU5ETJFU43KPV77 -s 10.240.0.2/32 -m comment --comment "default/kubernetes:https" -j KUBE-MARK-MASQ
-A KUBE-SEP-UDU5ETJFU43KPV77 -p tcp -m comment --comment "default/kubernetes:https" -m recent --set --name KUBE-SEP-UDU5ETJFU43KPV77 --mask 255.255.255.255 --rsource -m tcp -j DNAT --to-destination 10.240.0.2:443
-A KUBE-SERVICES -d 10.0.178.124/32 -p tcp -m comment --comment "kube-system/kubernetes-dashboard: cluster IP" -m tcp --dport 80 -j KUBE-SVC-XGLOHA7QRQ3V22RZ
-A KUBE-SERVICES -d 10.0.22.69/32 -p tcp -m comment --comment "default/nginx: cluster IP" -m tcp --dport 80 -j KUBE-SVC-4N57TFCL4MD7ZTDA
-A KUBE-SERVICES -d 10.0.0.1/32 -p tcp -m comment --comment "default/kubernetes:https cluster IP" -m tcp --dport 443 -j KUBE-SVC-NPX46M4PTMTKRN6Y
-A KUBE-SERVICES -d 10.0.186.67/32 -p tcp -m comment --comment "kube-system/default-http-backend:http cluster IP" -m tcp --dport 80 -j KUBE-SVC-XP4WJ6VSLGWALMW5
-A KUBE-SERVICES -d 10.0.0.10/32 -p udp -m comment --comment "kube-system/kube-dns:dns cluster IP" -m udp --dport 53 -j KUBE-SVC-TCOU7JCQXEZGVUNU
-A KUBE-SERVICES -d 10.0.0.10/32 -p tcp -m comment --comment "kube-system/kube-dns:dns-tcp cluster IP" -m tcp --dport 53 -j KUBE-SVC-ERIFXISQEP7F7OF4
-A KUBE-SERVICES -m comment --comment "kubernetes service nodeports; NOTE: this must be the last rule in this chain" -m addrtype --dst-type LOCAL -j KUBE-NODEPORTS
-A KUBE-SVC-4N57TFCL4MD7ZTDA -m comment --comment "default/nginx:" -j KUBE-SEP-RQOYX7NCZFYQWC23
-A KUBE-SVC-ERIFXISQEP7F7OF4 -m comment --comment "kube-system/kube-dns:dns-tcp" -j KUBE-SEP-5BME6LXGYWTVD5D3
-A KUBE-SVC-NPX46M4PTMTKRN6Y -m comment --comment "default/kubernetes:https" -m recent --rcheck --seconds 180 --reap --name KUBE-SEP-UDU5ETJFU43KPV77 --mask 255.255.255.255 --rsource -j KUBE-SEP-UDU5ETJFU43KPV77
-A KUBE-SVC-NPX46M4PTMTKRN6Y -m comment --comment "default/kubernetes:https" -j KUBE-SEP-UDU5ETJFU43KPV77
-A KUBE-SVC-TCOU7JCQXEZGVUNU -m comment --comment "kube-system/kube-dns:dns" -j KUBE-SEP-222YD7DQOUNKFRLL
-A KUBE-SVC-XGLOHA7QRQ3V22RZ -m comment --comment "kube-system/kubernetes-dashboard:" -j KUBE-SEP-5QD3CDT47352FOW3
-A KUBE-SVC-XP4WJ6VSLGWALMW5 -m comment --comment "kube-system/default-http-backend:http" -j KUBE-SEP-6W3Q6JSML6KNIHZA
-A RKT-PFWD-DNAT-21d46439 -p tcp -m tcp --dport 0 -j DNAT --to-destination 172.16.28.7:8080
-A RKT-PFWD-DNAT-47870d21 -p tcp -m tcp --dport 0 -j DNAT --to-destination 172.16.28.2:9090
-A RKT-PFWD-DNAT-9845a2ed -p tcp -m tcp --dport 0 -j DNAT --to-destination 172.16.28.10:80
-A RKT-PFWD-DNAT-cd9f1c16 -p udp -m udp --dport 0 -j DNAT --to-destination 172.16.28.4:53
-A RKT-PFWD-DNAT-cd9f1c16 -p tcp -m tcp --dport 0 -j DNAT --to-destination 172.16.28.4:53
-A RKT-PFWD-DNAT-cd9f1c16 -p tcp -m tcp --dport 0 -j DNAT --to-destination 172.16.28.4:8080
-A RKT-PFWD-SNAT-21d46439 -s 127.0.0.1/32 -d 172.16.28.7/32 -p tcp -m tcp --dport 0 -j MASQUERADE
-A RKT-PFWD-SNAT-47870d21 -s 127.0.0.1/32 -d 172.16.28.2/32 -p tcp -m tcp --dport 0 -j MASQUERADE
-A RKT-PFWD-SNAT-9845a2ed -s 127.0.0.1/32 -d 172.16.28.10/32 -p tcp -m tcp --dport 0 -j MASQUERADE
-A RKT-PFWD-SNAT-cd9f1c16 -s 127.0.0.1/32 -d 172.16.28.4/32 -p udp -m udp --dport 0 -j MASQUERADE
-A RKT-PFWD-SNAT-cd9f1c16 -s 127.0.0.1/32 -d 172.16.28.4/32 -p tcp -m tcp --dport 0 -j MASQUERADE
COMMIT
# Completed on Wed Apr 6 20:05:53 2016
Raw
good.txt
# ConfigureCBR0=true, network-plugin=kubenet, service IPs are reachable
# Generated by iptables-save v1.4.21 on Wed Apr 6 20:04:15 2016
*filter
:INPUT ACCEPT [818:2055277]
:FORWARD ACCEPT [182:35477]
:OUTPUT ACCEPT [760:1969620]
:KUBE-SERVICES - [0:0]
-A OUTPUT -m comment --comment "kubernetes service portals" -j KUBE-SERVICES
COMMIT
# Completed on Wed Apr 6 20:04:15 2016
# Generated by iptables-save v1.4.21 on Wed Apr 6 20:04:15 2016
*nat
:PREROUTING ACCEPT [35:2834]
:INPUT ACCEPT [1:60]
:OUTPUT ACCEPT [11:660]
:POSTROUTING ACCEPT [0:0]
:CNI-kubenet - [0:0]
:KUBE-MARK-MASQ - [0:0]
:KUBE-NODEPORTS - [0:0]
:KUBE-POSTROUTING - [0:0]
:KUBE-SEP-263UWIYWZXPNMPMF - [0:0]
:KUBE-SEP-JDNZGP4SACID25VJ - [0:0]
:KUBE-SEP-LASJGFFJP3UOS6RQ - [0:0]
:KUBE-SEP-LPGSDLJ3FDW46N4W - [0:0]
:KUBE-SEP-UDU5ETJFU43KPV77 - [0:0]
:KUBE-SEP-ZOHCFPA6DTVB5W5Z - [0:0]
:KUBE-SERVICES - [0:0]
:KUBE-SVC-4N57TFCL4MD7ZTDA - [0:0]
:KUBE-SVC-ERIFXISQEP7F7OF4 - [0:0]
:KUBE-SVC-NPX46M4PTMTKRN6Y - [0:0]
:KUBE-SVC-TCOU7JCQXEZGVUNU - [0:0]
:KUBE-SVC-XGLOHA7QRQ3V22RZ - [0:0]
:KUBE-SVC-XP4WJ6VSLGWALMW5 - [0:0]
:RKT-PFWD-DNAT-050273de - [0:0]
:RKT-PFWD-DNAT-2284f342 - [0:0]
:RKT-PFWD-DNAT-30e59e70 - [0:0]
:RKT-PFWD-DNAT-501a3d16 - [0:0]
:RKT-PFWD-DNAT-ae15e9f6 - [0:0]
:RKT-PFWD-SNAT-050273de - [0:0]
:RKT-PFWD-SNAT-2284f342 - [0:0]
:RKT-PFWD-SNAT-30e59e70 - [0:0]
:RKT-PFWD-SNAT-501a3d16 - [0:0]
:RKT-PFWD-SNAT-ae15e9f6 - [0:0]
-A PREROUTING -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-ae15e9f6
-A PREROUTING -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-2284f342
-A PREROUTING -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-050273de
-A PREROUTING -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-30e59e70
-A PREROUTING -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-501a3d16
-A PREROUTING -m comment --comment "kubernetes service portals" -j KUBE-SERVICES
-A OUTPUT -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-ae15e9f6
-A OUTPUT -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-2284f342
-A OUTPUT -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-050273de
-A OUTPUT -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-30e59e70
-A OUTPUT -m addrtype --dst-type LOCAL -j RKT-PFWD-DNAT-501a3d16
-A OUTPUT -m comment --comment "kubernetes service portals" -j KUBE-SERVICES
-A POSTROUTING -s 127.0.0.1/32 ! -d 127.0.0.1/32 -j RKT-PFWD-SNAT-ae15e9f6
-A POSTROUTING -s 127.0.0.1/32 ! -d 127.0.0.1/32 -j RKT-PFWD-SNAT-2284f342
-A POSTROUTING -s 127.0.0.1/32 ! -d 127.0.0.1/32 -j RKT-PFWD-SNAT-050273de
-A POSTROUTING -s 127.0.0.1/32 ! -d 127.0.0.1/32 -j RKT-PFWD-SNAT-30e59e70
-A POSTROUTING -s 127.0.0.1/32 ! -d 127.0.0.1/32 -j RKT-PFWD-SNAT-501a3d16
-A POSTROUTING -m comment --comment "kubernetes postrouting rules" -j KUBE-POSTROUTING
-A POSTROUTING ! -d 10.0.0.0/8 -m addrtype ! --dst-type LOCAL -j MASQUERADE
-A POSTROUTING -s 10.244.0.0/24 -j CNI-kubenet
-A CNI-kubenet -d 10.244.0.0/24 -j ACCEPT
-A CNI-kubenet ! -d 224.0.0.0/4 -j MASQUERADE
-A KUBE-MARK-MASQ -j MARK --set-xmark 0x4000/0x4000
-A KUBE-NODEPORTS -p tcp -m comment --comment "kube-system/default-http-backend:http" -m tcp --dport 31919 -j KUBE-MARK-MASQ
-A KUBE-NODEPORTS -p tcp -m comment --comment "kube-system/default-http-backend:http" -m tcp --dport 31919 -j KUBE-SVC-XP4WJ6VSLGWALMW5
-A KUBE-POSTROUTING -m comment --comment "kubernetes service traffic requiring SNAT" -m mark --mark 0x4000/0x4000 -j MASQUERADE
-A KUBE-SEP-263UWIYWZXPNMPMF -s 10.244.0.4/32 -m comment --comment "default/nginx:" -j KUBE-MARK-MASQ
-A KUBE-SEP-263UWIYWZXPNMPMF -p tcp -m comment --comment "default/nginx:" -m tcp -j DNAT --to-destination 10.244.0.4:80
-A KUBE-SEP-JDNZGP4SACID25VJ -s 10.244.0.2/32 -m comment --comment "kube-system/kubernetes-dashboard:" -j KUBE-MARK-MASQ
-A KUBE-SEP-JDNZGP4SACID25VJ -p tcp -m comment --comment "kube-system/kubernetes-dashboard:" -m tcp -j DNAT --to-destination 10.244.0.2:9090
-A KUBE-SEP-LASJGFFJP3UOS6RQ -s 10.244.0.5/32 -m comment --comment "kube-system/kube-dns:dns-tcp" -j KUBE-MARK-MASQ
-A KUBE-SEP-LASJGFFJP3UOS6RQ -p tcp -m comment --comment "kube-system/kube-dns:dns-tcp" -m tcp -j DNAT --to-destination 10.244.0.5:53
-A KUBE-SEP-LPGSDLJ3FDW46N4W -s 10.244.0.5/32 -m comment --comment "kube-system/kube-dns:dns" -j KUBE-MARK-MASQ
-A KUBE-SEP-LPGSDLJ3FDW46N4W -p udp -m comment --comment "kube-system/kube-dns:dns" -m udp -j DNAT --to-destination 10.244.0.5:53
-A KUBE-SEP-UDU5ETJFU43KPV77 -s 10.240.0.2/32 -m comment --comment "default/kubernetes:https" -j KUBE-MARK-MASQ
-A KUBE-SEP-UDU5ETJFU43KPV77 -p tcp -m comment --comment "default/kubernetes:https" -m recent --set --name KUBE-SEP-UDU5ETJFU43KPV77 --mask 255.255.255.255 --rsource -m tcp -j DNAT --to-destination 10.240.0.2:443
-A KUBE-SEP-ZOHCFPA6DTVB5W5Z -s 10.244.0.7/32 -m comment --comment "kube-system/default-http-backend:http" -j KUBE-MARK-MASQ
-A KUBE-SEP-ZOHCFPA6DTVB5W5Z -p tcp -m comment --comment "kube-system/default-http-backend:http" -m tcp -j DNAT --to-destination 10.244.0.7:8080
-A KUBE-SERVICES -d 10.0.0.1/32 -p tcp -m comment --comment "default/kubernetes:https cluster IP" -m tcp --dport 443 -j KUBE-SVC-NPX46M4PTMTKRN6Y
-A KUBE-SERVICES -d 10.0.0.10/32 -p udp -m comment --comment "kube-system/kube-dns:dns cluster IP" -m udp --dport 53 -j KUBE-SVC-TCOU7JCQXEZGVUNU
-A KUBE-SERVICES -d 10.0.0.10/32 -p tcp -m comment --comment "kube-system/kube-dns:dns-tcp cluster IP" -m tcp --dport 53 -j KUBE-SVC-ERIFXISQEP7F7OF4
-A KUBE-SERVICES -d 10.0.115.140/32 -p tcp -m comment --comment "kube-system/default-http-backend:http cluster IP" -m tcp --dport 80 -j KUBE-SVC-XP4WJ6VSLGWALMW5
-A KUBE-SERVICES -d 10.0.58.191/32 -p tcp -m comment --comment "kube-system/kubernetes-dashboard: cluster IP" -m tcp --dport 80 -j KUBE-SVC-XGLOHA7QRQ3V22RZ
-A KUBE-SERVICES -d 10.0.192.9/32 -p tcp -m comment --comment "default/nginx: cluster IP" -m tcp --dport 80 -j KUBE-SVC-4N57TFCL4MD7ZTDA
-A KUBE-SERVICES -m comment --comment "kubernetes service nodeports; NOTE: this must be the last rule in this chain" -m addrtype --dst-type LOCAL -j KUBE-NODEPORTS
-A KUBE-SVC-4N57TFCL4MD7ZTDA -m comment --comment "default/nginx:" -j KUBE-SEP-263UWIYWZXPNMPMF
-A KUBE-SVC-ERIFXISQEP7F7OF4 -m comment --comment "kube-system/kube-dns:dns-tcp" -j KUBE-SEP-LASJGFFJP3UOS6RQ
-A KUBE-SVC-NPX46M4PTMTKRN6Y -m comment --comment "default/kubernetes:https" -m recent --rcheck --seconds 180 --reap --name KUBE-SEP-UDU5ETJFU43KPV77 --mask 255.255.255.255 --rsource -j KUBE-SEP-UDU5ETJFU43KPV77
-A KUBE-SVC-NPX46M4PTMTKRN6Y -m comment --comment "default/kubernetes:https" -j KUBE-SEP-UDU5ETJFU43KPV77
-A KUBE-SVC-TCOU7JCQXEZGVUNU -m comment --comment "kube-system/kube-dns:dns" -j KUBE-SEP-LPGSDLJ3FDW46N4W
-A KUBE-SVC-XGLOHA7QRQ3V22RZ -m comment --comment "kube-system/kubernetes-dashboard:" -j KUBE-SEP-JDNZGP4SACID25VJ
-A KUBE-SVC-XP4WJ6VSLGWALMW5 -m comment --comment "kube-system/default-http-backend:http" -j KUBE-SEP-ZOHCFPA6DTVB5W5Z
-A RKT-PFWD-DNAT-050273de -p tcp -m tcp --dport 0 -j DNAT --to-destination 172.16.28.4:80
-A RKT-PFWD-DNAT-2284f342 -p udp -m udp --dport 0 -j DNAT --to-destination 172.16.28.5:53
-A RKT-PFWD-DNAT-2284f342 -p tcp -m tcp --dport 0 -j DNAT --to-destination 172.16.28.5:53
-A RKT-PFWD-DNAT-2284f342 -p tcp -m tcp --dport 0 -j DNAT --to-destination 172.16.28.5:8080
-A RKT-PFWD-DNAT-30e59e70 -p tcp -m tcp --dport 0 -j DNAT --to-destination 172.16.28.3:8080
-A RKT-PFWD-DNAT-501a3d16 -p tcp -m tcp --dport 0 -j DNAT --to-destination 172.16.28.2:9090
-A RKT-PFWD-DNAT-ae15e9f6 -p tcp -m tcp --dport 0 -j DNAT --to-destination 172.16.28.7:8080
-A RKT-PFWD-SNAT-050273de -s 127.0.0.1/32 -d 172.16.28.4/32 -p tcp -m tcp --dport 0 -j MASQUERADE
-A RKT-PFWD-SNAT-2284f342 -s 127.0.0.1/32 -d 172.16.28.5/32 -p udp -m udp --dport 0 -j MASQUERADE
-A RKT-PFWD-SNAT-2284f342 -s 127.0.0.1/32 -d 172.16.28.5/32 -p tcp -m tcp --dport 0 -j MASQUERADE
-A RKT-PFWD-SNAT-30e59e70 -s 127.0.0.1/32 -d 172.16.28.3/32 -p tcp -m tcp --dport 0 -j MASQUERADE
-A RKT-PFWD-SNAT-501a3d16 -s 127.0.0.1/32 -d 172.16.28.2/32 -p tcp -m tcp --dport 0 -j MASQUERADE
-A RKT-PFWD-SNAT-ae15e9f6 -s 127.0.0.1/32 -d 172.16.28.7/32 -p tcp -m tcp --dport 0 -j MASQUERADE
COMMIT
# Completed on Wed Apr 6 20:04:15 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment