diff options
| author | Kaarle Ritvanen <kaarle.ritvanen@datakunkku.fi> | 2017-11-01 10:16:52 +0200 |
|---|---|---|
| committer | Kaarle Ritvanen <kaarle.ritvanen@datakunkku.fi> | 2017-11-01 12:05:30 +0200 |
| commit | 54642b8230451b8bb5daf497332940cacdaae620 (patch) | |
| tree | ef9566293f60faa528f09838ce97e6309320d9ef /test/output/filter/rules-save | |
| parent | c5056f215d1a2aef5581bcf6213ae9eb7f984291 (diff) | |
| download | awall-54642b8230451b8bb5daf497332940cacdaae620.tar.bz2 awall-54642b8230451b8bb5daf497332940cacdaae620.tar.xz | |
test: ulog
Diffstat (limited to 'test/output/filter/rules-save')
| -rw-r--r-- | test/output/filter/rules-save | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/test/output/filter/rules-save b/test/output/filter/rules-save index 0a18dcb..eba30de 100644 --- a/test/output/filter/rules-save +++ b/test/output/filter/rules-save @@ -5,10 +5,13 @@ :OUTPUT DROP [0:0] :icmp-routing - [0:0] :logaccept-0 - [0:0] +:logaccept-1 - [0:0] :logdrop-0 - [0:0] :logdrop-1 - [0:0] :logdrop-2 - [0:0] +:logdrop-3 - [0:0] :logpass-0 - [0:0] +:logpass-1 - [0:0] :logreject-0 - [0:0] :logtarpit-0 - [0:0] :tarpit - [0:0] @@ -31,6 +34,9 @@ -A FORWARD -j ACCEPT -A FORWARD -j DROP -A FORWARD +-A FORWARD -j logaccept-1 +-A FORWARD -j logdrop-3 +-A FORWARD -j logpass-1 -A FORWARD -i eth0 -j ACCEPT -A FORWARD -i eth1 -s 10.0.0.0/12 -o eth2 -d 10.1.0.0/12 -j ACCEPT -A FORWARD -i eth1 -s 10.0.0.0/12 -o eth3 -d 10.1.0.0/12 -j ACCEPT @@ -101,6 +107,9 @@ -A INPUT -j ACCEPT -A INPUT -j DROP -A INPUT +-A INPUT -j logaccept-1 +-A INPUT -j logdrop-3 +-A INPUT -j logpass-1 -A INPUT -i eth0 -j ACCEPT -A INPUT -j ACCEPT -A INPUT -p icmp -j icmp-routing @@ -124,6 +133,10 @@ -A OUTPUT -j ACCEPT -A OUTPUT -j DROP -A OUTPUT +-A OUTPUT -j logaccept-1 +-A OUTPUT -j logdrop-3 +-A OUTPUT -j logpass-1 +-A OUTPUT -m limit --limit 12/minute -j ULOG -A OUTPUT -j ACCEPT -A OUTPUT -o eth1 -d 10.0.0.0/12 -j ACCEPT -A OUTPUT -p icmp -j icmp-routing @@ -132,13 +145,18 @@ -A icmp-routing -p icmp --icmp-type 12 -j ACCEPT -A logaccept-0 -m limit --limit 1/second -j LOG -A logaccept-0 -j ACCEPT +-A logaccept-1 -m limit --limit 12/minute -j ULOG +-A logaccept-1 -j ACCEPT -A logdrop-0 -m limit --limit 1/second -j LOG -A logdrop-0 -j DROP -A logdrop-1 -m limit --limit 1/second -j LOG -A logdrop-1 -j DROP -A logdrop-2 -m limit --limit 1/second -j LOG -A logdrop-2 -j DROP +-A logdrop-3 -m limit --limit 12/minute -j ULOG +-A logdrop-3 -j DROP -A logpass-0 -m limit --limit 1/second -j LOG +-A logpass-1 -m limit --limit 12/minute -j ULOG -A logreject-0 -m limit --limit 1/second -j LOG -A logreject-0 -j REJECT -A logtarpit-0 -m limit --limit 1/second -j LOG |