aboutsummaryrefslogtreecommitdiffstats
path: root/test/output/rules6-save
diff options
context:
space:
mode:
Diffstat (limited to 'test/output/rules6-save')
-rw-r--r--test/output/rules6-save439
1 files changed, 347 insertions, 92 deletions
diff --git a/test/output/rules6-save b/test/output/rules6-save
index c8c4fc4..7234014 100644
--- a/test/output/rules6-save
+++ b/test/output/rules6-save
@@ -25,9 +25,41 @@
:limit-25 - [0:0]
:limit-26 - [0:0]
:limit-27 - [0:0]
+:limit-28 - [0:0]
+:limit-29 - [0:0]
:limit-3 - [0:0]
+:limit-30 - [0:0]
+:limit-31 - [0:0]
+:limit-32 - [0:0]
+:limit-33 - [0:0]
+:limit-34 - [0:0]
+:limit-35 - [0:0]
+:limit-36 - [0:0]
+:limit-37 - [0:0]
+:limit-38 - [0:0]
+:limit-39 - [0:0]
:limit-4 - [0:0]
+:limit-40 - [0:0]
+:limit-41 - [0:0]
+:limit-42 - [0:0]
+:limit-43 - [0:0]
+:limit-44 - [0:0]
+:limit-45 - [0:0]
+:limit-46 - [0:0]
+:limit-47 - [0:0]
+:limit-48 - [0:0]
+:limit-49 - [0:0]
:limit-5 - [0:0]
+:limit-50 - [0:0]
+:limit-51 - [0:0]
+:limit-52 - [0:0]
+:limit-53 - [0:0]
+:limit-54 - [0:0]
+:limit-55 - [0:0]
+:limit-56 - [0:0]
+:limit-57 - [0:0]
+:limit-58 - [0:0]
+:limit-59 - [0:0]
:limit-6 - [0:0]
:limit-7 - [0:0]
:limit-8 - [0:0]
@@ -35,13 +67,20 @@
:logaccept-0 - [0:0]
:logaccept-1 - [0:0]
:logaccept-2 - [0:0]
+:logaccept-3 - [0:0]
:logaccept-final-0 - [0:0]
:logaccept-final-1 - [0:0]
:logaccept-final-2 - [0:0]
:logaccept-final-3 - [0:0]
+:logaccept-final-4 - [0:0]
+:logaccept-final-5 - [0:0]
:logdrop-0 - [0:0]
:logdrop-1 - [0:0]
:logdrop-10 - [0:0]
+:logdrop-11 - [0:0]
+:logdrop-12 - [0:0]
+:logdrop-13 - [0:0]
+:logdrop-14 - [0:0]
:logdrop-2 - [0:0]
:logdrop-3 - [0:0]
:logdrop-4 - [0:0]
@@ -54,20 +93,36 @@
:logreject-0 - [0:0]
:logtarpit-0 - [0:0]
:tarpit - [0:0]
--A FORWARD -j limit-27
--A FORWARD -j limit-26
--A FORWARD -j limit-25
--A FORWARD -j limit-24
--A FORWARD -j limit-23
--A FORWARD -j limit-22
--A FORWARD -j limit-21
--A FORWARD -j limit-20
--A FORWARD -j limit-19
--A FORWARD -j limit-18
--A FORWARD -j limit-17
--A FORWARD -j limit-16
--A FORWARD -j limit-15
--A FORWARD -j limit-14
+-A FORWARD -j limit-59
+-A FORWARD -j limit-58
+-A FORWARD -j limit-57
+-A FORWARD -j limit-56
+-A FORWARD -j limit-55
+-A FORWARD -j limit-54
+-A FORWARD -j limit-53
+-A FORWARD -j limit-52
+-A FORWARD -j limit-51
+-A FORWARD -j limit-50
+-A FORWARD -j limit-49
+-A FORWARD -j limit-48
+-A FORWARD -j limit-47
+-A FORWARD -j limit-46
+-A FORWARD -j limit-45
+-A FORWARD -j limit-44
+-A FORWARD -j limit-43
+-A FORWARD -j limit-42
+-A FORWARD -j limit-41
+-A FORWARD -j limit-40
+-A FORWARD -j limit-39
+-A FORWARD -j limit-38
+-A FORWARD -j limit-37
+-A FORWARD -j limit-36
+-A FORWARD -j limit-35
+-A FORWARD -j limit-34
+-A FORWARD -j limit-33
+-A FORWARD -j limit-32
+-A FORWARD -j limit-31
+-A FORWARD -j limit-30
-A FORWARD -m conntrack --ctstate ESTABLISHED -j ACCEPT
-A FORWARD -j ACCEPT
-A FORWARD -j ACCEPT
@@ -89,38 +144,83 @@
-A FORWARD -j limit-11
-A FORWARD -j limit-12
-A FORWARD -j limit-13
+-A FORWARD -j limit-14
+-A FORWARD -j limit-15
+-A FORWARD -j limit-16
+-A FORWARD -j limit-17
+-A FORWARD -j limit-18
+-A FORWARD -j limit-19
+-A FORWARD -j limit-20
+-A FORWARD -j limit-21
+-A FORWARD -j limit-22
+-A FORWARD -j limit-23
+-A FORWARD -j limit-24
+-A FORWARD -j limit-25
+-A FORWARD -j limit-26
+-A FORWARD -j limit-27
+-A FORWARD -j limit-28
+-A FORWARD -j limit-29
-A FORWARD -j ACCEPT
-A FORWARD -j logaccept-final-0
-A FORWARD -j ACCEPT
+-A FORWARD -j ACCEPT
-A FORWARD -j logaccept-final-1
-A FORWARD -j ACCEPT
+-A FORWARD -j ACCEPT
-A FORWARD -j logaccept-final-2
-A FORWARD -j ACCEPT
+-A FORWARD -j ACCEPT
-A FORWARD -j logaccept-final-3
-A FORWARD -j ACCEPT
--A FORWARD -j logdrop-9
+-A FORWARD -j ACCEPT
+-A FORWARD -j logaccept-final-4
+-A FORWARD -j ACCEPT
+-A FORWARD -j ACCEPT
+-A FORWARD -j logaccept-final-5
+-A FORWARD -j ACCEPT
+-A FORWARD -j ACCEPT
+-A FORWARD -j logdrop-13
-A FORWARD
-A FORWARD -j ACCEPT
-A FORWARD -j DROP
-A FORWARD
--A FORWARD -j logaccept-2
--A FORWARD -j logdrop-10
+-A FORWARD -j logaccept-3
+-A FORWARD -j logdrop-14
-A FORWARD -j logpass-0
+-A FORWARD -j ACCEPT
+-A FORWARD -j DROP
+-A FORWARD
-A FORWARD -p icmpv6 -j icmp-routing
--A INPUT -j limit-27
--A INPUT -j limit-26
--A INPUT -j limit-25
--A INPUT -j limit-24
--A INPUT -j limit-23
--A INPUT -j limit-22
--A INPUT -j limit-21
--A INPUT -j limit-20
--A INPUT -j limit-19
--A INPUT -j limit-18
--A INPUT -j limit-17
--A INPUT -j limit-16
--A INPUT -j limit-15
--A INPUT -j limit-14
+-A INPUT -j limit-59
+-A INPUT -j limit-58
+-A INPUT -j limit-57
+-A INPUT -j limit-56
+-A INPUT -j limit-55
+-A INPUT -j limit-54
+-A INPUT -j limit-53
+-A INPUT -j limit-52
+-A INPUT -j limit-51
+-A INPUT -j limit-50
+-A INPUT -j limit-49
+-A INPUT -j limit-48
+-A INPUT -j limit-47
+-A INPUT -j limit-46
+-A INPUT -j limit-45
+-A INPUT -j limit-44
+-A INPUT -j limit-43
+-A INPUT -j limit-42
+-A INPUT -j limit-41
+-A INPUT -j limit-40
+-A INPUT -j limit-39
+-A INPUT -j limit-38
+-A INPUT -j limit-37
+-A INPUT -j limit-36
+-A INPUT -j limit-35
+-A INPUT -j limit-34
+-A INPUT -j limit-33
+-A INPUT -j limit-32
+-A INPUT -j limit-31
+-A INPUT -j limit-30
-A INPUT -m conntrack --ctstate ESTABLISHED -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -j ACCEPT
@@ -143,38 +243,83 @@
-A INPUT -j limit-11
-A INPUT -j limit-12
-A INPUT -j limit-13
+-A INPUT -j limit-14
+-A INPUT -j limit-15
+-A INPUT -j limit-16
+-A INPUT -j limit-17
+-A INPUT -j limit-18
+-A INPUT -j limit-19
+-A INPUT -j limit-20
+-A INPUT -j limit-21
+-A INPUT -j limit-22
+-A INPUT -j limit-23
+-A INPUT -j limit-24
+-A INPUT -j limit-25
+-A INPUT -j limit-26
+-A INPUT -j limit-27
+-A INPUT -j limit-28
+-A INPUT -j limit-29
-A INPUT -j ACCEPT
-A INPUT -j logaccept-final-0
-A INPUT -j ACCEPT
+-A INPUT -j ACCEPT
-A INPUT -j logaccept-final-1
-A INPUT -j ACCEPT
+-A INPUT -j ACCEPT
-A INPUT -j logaccept-final-2
-A INPUT -j ACCEPT
+-A INPUT -j ACCEPT
-A INPUT -j logaccept-final-3
-A INPUT -j ACCEPT
--A INPUT -j logdrop-9
+-A INPUT -j ACCEPT
+-A INPUT -j logaccept-final-4
+-A INPUT -j ACCEPT
+-A INPUT -j ACCEPT
+-A INPUT -j logaccept-final-5
+-A INPUT -j ACCEPT
+-A INPUT -j ACCEPT
+-A INPUT -j logdrop-13
-A INPUT
-A INPUT -j ACCEPT
-A INPUT -j DROP
-A INPUT
--A INPUT -j logaccept-2
--A INPUT -j logdrop-10
+-A INPUT -j logaccept-3
+-A INPUT -j logdrop-14
-A INPUT -j logpass-0
+-A INPUT -j ACCEPT
+-A INPUT -j DROP
+-A INPUT
-A INPUT -p icmpv6 -j ACCEPT
--A OUTPUT -j limit-27
--A OUTPUT -j limit-26
--A OUTPUT -j limit-25
--A OUTPUT -j limit-24
--A OUTPUT -j limit-23
--A OUTPUT -j limit-22
--A OUTPUT -j limit-21
--A OUTPUT -j limit-20
--A OUTPUT -j limit-19
--A OUTPUT -j limit-18
--A OUTPUT -j limit-17
--A OUTPUT -j limit-16
--A OUTPUT -j limit-15
--A OUTPUT -j limit-14
+-A OUTPUT -j limit-59
+-A OUTPUT -j limit-58
+-A OUTPUT -j limit-57
+-A OUTPUT -j limit-56
+-A OUTPUT -j limit-55
+-A OUTPUT -j limit-54
+-A OUTPUT -j limit-53
+-A OUTPUT -j limit-52
+-A OUTPUT -j limit-51
+-A OUTPUT -j limit-50
+-A OUTPUT -j limit-49
+-A OUTPUT -j limit-48
+-A OUTPUT -j limit-47
+-A OUTPUT -j limit-46
+-A OUTPUT -j limit-45
+-A OUTPUT -j limit-44
+-A OUTPUT -j limit-43
+-A OUTPUT -j limit-42
+-A OUTPUT -j limit-41
+-A OUTPUT -j limit-40
+-A OUTPUT -j limit-39
+-A OUTPUT -j limit-38
+-A OUTPUT -j limit-37
+-A OUTPUT -j limit-36
+-A OUTPUT -j limit-35
+-A OUTPUT -j limit-34
+-A OUTPUT -j limit-33
+-A OUTPUT -j limit-32
+-A OUTPUT -j limit-31
+-A OUTPUT -j limit-30
-A OUTPUT -m conntrack --ctstate ESTABLISHED -j ACCEPT
-A OUTPUT -o lo -j ACCEPT
-A OUTPUT -j ACCEPT
@@ -197,23 +342,52 @@
-A OUTPUT -j limit-11
-A OUTPUT -j limit-12
-A OUTPUT -j limit-13
+-A OUTPUT -j limit-14
+-A OUTPUT -j limit-15
+-A OUTPUT -j limit-16
+-A OUTPUT -j limit-17
+-A OUTPUT -j limit-18
+-A OUTPUT -j limit-19
+-A OUTPUT -j limit-20
+-A OUTPUT -j limit-21
+-A OUTPUT -j limit-22
+-A OUTPUT -j limit-23
+-A OUTPUT -j limit-24
+-A OUTPUT -j limit-25
+-A OUTPUT -j limit-26
+-A OUTPUT -j limit-27
+-A OUTPUT -j limit-28
+-A OUTPUT -j limit-29
-A OUTPUT -j ACCEPT
-A OUTPUT -j logaccept-final-0
-A OUTPUT -j ACCEPT
+-A OUTPUT -j ACCEPT
-A OUTPUT -j logaccept-final-1
-A OUTPUT -j ACCEPT
+-A OUTPUT -j ACCEPT
-A OUTPUT -j logaccept-final-2
-A OUTPUT -j ACCEPT
+-A OUTPUT -j ACCEPT
-A OUTPUT -j logaccept-final-3
-A OUTPUT -j ACCEPT
--A OUTPUT -j logdrop-9
+-A OUTPUT -j ACCEPT
+-A OUTPUT -j logaccept-final-4
+-A OUTPUT -j ACCEPT
+-A OUTPUT -j ACCEPT
+-A OUTPUT -j logaccept-final-5
+-A OUTPUT -j ACCEPT
+-A OUTPUT -j ACCEPT
+-A OUTPUT -j logdrop-13
-A OUTPUT
-A OUTPUT -j ACCEPT
-A OUTPUT -j DROP
-A OUTPUT
--A OUTPUT -j logaccept-2
--A OUTPUT -j logdrop-10
+-A OUTPUT -j logaccept-3
+-A OUTPUT -j logdrop-14
-A OUTPUT -j logpass-0
+-A OUTPUT -j ACCEPT
+-A OUTPUT -j DROP
+-A OUTPUT
-A OUTPUT -p icmpv6 -j ACCEPT
-A icmp-routing -p icmpv6 --icmpv6-type 1 -j ACCEPT
-A icmp-routing -p icmpv6 --icmpv6-type 2 -j ACCEPT
@@ -223,72 +397,141 @@
-A limit-0 -m recent --name limit-0 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
-A limit-1 -m recent --name limit-1 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-2
-A limit-1 -m recent --name limit-1 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-10 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-10 -j logaccept-0
--A limit-10 -m limit --limit 1/second -j LOG
--A limit-10 -j DROP
--A limit-11 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-11 -j ACCEPT
--A limit-11 -j DROP
--A limit-12 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-12 -j RETURN
--A limit-12 -j DROP
--A limit-13 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-13 -j logaccept-1
--A limit-13 -j DROP
--A limit-14 -m recent --name limit-14 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-5
--A limit-14 -m recent --name limit-14 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-15 -m recent --name limit-15 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-6
--A limit-15 -m recent --name limit-15 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-16 -m recent --name limit-16 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-7
--A limit-16 -m recent --name limit-16 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-17 -m recent --name limit-17 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-8
--A limit-17 -m recent --name limit-17 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-18 -m recent --name limit-18 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-18 -m recent --name limit-18 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-19 -m recent --name limit-19 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-19 -m recent --name limit-19 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-10 -m recent --name limit-10 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-10 -m recent --name limit-10 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-11 -m recent --name limit-11 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-11 -m recent --name limit-11 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-12 -m recent --name limit-12 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-12 -m recent --name limit-12 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-13 -m recent --name limit-13 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-13 -m recent --name limit-13 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-14 -m recent --name limit-14 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-14 -m limit --limit 1/second -j LOG
+-A limit-14 -m recent --name limit-14 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-15 -m recent --name limit-15 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-15 -m recent --name limit-15 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-16 -m recent --name limit-16 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-16 -m recent --name limit-16 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-17 -m recent --name limit-17 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-17 -m recent --name limit-17 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-18 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-18 -j ACCEPT
+-A limit-18 -m limit --limit 1/second -j LOG
+-A limit-18 -j DROP
+-A limit-19 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-19 -j RETURN
+-A limit-19 -m limit --limit 1/second -j LOG
+-A limit-19 -j DROP
-A limit-2 -m recent --name limit-2 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-3
-A limit-2 -m limit --limit 1/second -j LOG
-A limit-2 -m recent --name limit-2 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-20 -m recent --name limit-20 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-20 -m recent --name limit-20 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-21 -m recent --name limit-21 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-21 -m recent --name limit-21 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-22 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-22 -j RETURN
--A limit-22 -m limit --limit 1/second -j LOG
+-A limit-20 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-20 -j logaccept-0
+-A limit-20 -m limit --limit 1/second -j LOG
+-A limit-20 -j DROP
+-A limit-21 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-21 -j ACCEPT
+-A limit-21 -m limit --limit 1/second -j LOG
+-A limit-21 -j DROP
+-A limit-22 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-22 -j ACCEPT
-A limit-22 -j DROP
-A limit-23 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-23 -j RETURN
--A limit-23 -m limit --limit 1/second -j LOG
-A limit-23 -j DROP
--A limit-24 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-24 -j RETURN
--A limit-24 -m limit --limit 1/second -j LOG
+-A limit-24 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-24 -j logaccept-1
-A limit-24 -j DROP
--A limit-25 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-25 -j RETURN
+-A limit-25 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-25 -j ACCEPT
-A limit-25 -j DROP
--A limit-26 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-26 -j RETURN
+-A limit-26 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-26 -j ACCEPT
-A limit-26 -j DROP
-A limit-27 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-27 -j RETURN
-A limit-27 -j DROP
+-A limit-28 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-28 -j logaccept-2
+-A limit-28 -j DROP
+-A limit-29 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-29 -j ACCEPT
+-A limit-29 -j DROP
-A limit-3 -m recent --name limit-3 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-4
-A limit-3 -m recent --name limit-3 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-4 -m recent --name limit-4 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-30 -m recent --name limit-30 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-7
+-A limit-30 -m recent --name limit-30 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-31 -m recent --name limit-31 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-8
+-A limit-31 -m recent --name limit-31 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-32 -m recent --name limit-32 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-9
+-A limit-32 -m recent --name limit-32 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-33 -m recent --name limit-33 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-10
+-A limit-33 -m recent --name limit-33 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-34 -m recent --name limit-34 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-11
+-A limit-34 -m recent --name limit-34 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-35 -m recent --name limit-35 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-12
+-A limit-35 -m recent --name limit-35 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-36 -m recent --name limit-36 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-36 -m recent --name limit-36 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-37 -m recent --name limit-37 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-37 -m recent --name limit-37 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-38 -m recent --name limit-38 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-38 -m recent --name limit-38 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-39 -m recent --name limit-39 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-39 -m recent --name limit-39 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-4 -m recent --name limit-4 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-5
-A limit-4 -m recent --name limit-4 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-5 -m recent --name limit-5 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-40 -m recent --name limit-40 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-40 -m recent --name limit-40 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-41 -m recent --name limit-41 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-41 -m recent --name limit-41 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-42 -m recent --name limit-42 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-42 -m recent --name limit-42 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-43 -m recent --name limit-43 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-43 -m recent --name limit-43 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-44 -m recent --name limit-44 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-44 -m recent --name limit-44 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-45 -m recent --name limit-45 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-45 -m recent --name limit-45 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-46 -m recent --name limit-46 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-46 -m recent --name limit-46 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-47 -m recent --name limit-47 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-47 -m recent --name limit-47 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-48 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-48 -j RETURN
+-A limit-48 -m limit --limit 1/second -j LOG
+-A limit-48 -j DROP
+-A limit-49 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-49 -j RETURN
+-A limit-49 -m limit --limit 1/second -j LOG
+-A limit-49 -j DROP
+-A limit-5 -m recent --name limit-5 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-6
-A limit-5 -m recent --name limit-5 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-50 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-50 -j RETURN
+-A limit-50 -m limit --limit 1/second -j LOG
+-A limit-50 -j DROP
+-A limit-51 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-51 -j RETURN
+-A limit-51 -m limit --limit 1/second -j LOG
+-A limit-51 -j DROP
+-A limit-52 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-52 -j RETURN
+-A limit-52 -j DROP
+-A limit-53 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-53 -j RETURN
+-A limit-53 -j DROP
+-A limit-54 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-54 -j RETURN
+-A limit-54 -j DROP
+-A limit-55 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-55 -j RETURN
+-A limit-55 -j DROP
+-A limit-56 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-56 -j RETURN
+-A limit-56 -j DROP
+-A limit-57 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-57 -j RETURN
+-A limit-57 -j DROP
+-A limit-58 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-58 -j RETURN
+-A limit-58 -j DROP
+-A limit-59 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-59 -j RETURN
+-A limit-59 -j DROP
-A limit-6 -m recent --name limit-6 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-6 -m limit --limit 1/second -j LOG
-A limit-6 -m recent --name limit-6 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
-A limit-7 -m recent --name limit-7 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-7 -m recent --name limit-7 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-8 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-8 -j ACCEPT
+-A limit-7 -m recent --name limit-7 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-8 -m recent --name limit-8 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
-A limit-8 -m limit --limit 1/second -j LOG
--A limit-8 -j DROP
--A limit-9 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-9 -j RETURN
--A limit-9 -m limit --limit 1/second -j LOG
--A limit-9 -j DROP
+-A limit-8 -m recent --name limit-8 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-9 -m recent --name limit-9 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-9 -m recent --name limit-9 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
-A logaccept-0 -m limit --limit 1/second -j LOG
-A logaccept-0 -j ACCEPT
-A logaccept-1 -m limit --limit 1/second -j LOG
-A logaccept-1 -j ACCEPT
-A logaccept-2 -m limit --limit 1/second -j LOG
-A logaccept-2 -j ACCEPT
+-A logaccept-3 -m limit --limit 1/second -j LOG
+-A logaccept-3 -j ACCEPT
-A logaccept-final-0 -m limit --limit 1/second -j LOG
-A logaccept-final-0 -j ACCEPT
-A logaccept-final-1 -m limit --limit 1/second -j LOG
@@ -297,12 +540,24 @@
-A logaccept-final-2 -j ACCEPT
-A logaccept-final-3 -m limit --limit 1/second -j LOG
-A logaccept-final-3 -j ACCEPT
+-A logaccept-final-4 -m limit --limit 1/second -j LOG
+-A logaccept-final-4 -j ACCEPT
+-A logaccept-final-5 -m limit --limit 1/second -j LOG
+-A logaccept-final-5 -j ACCEPT
-A logdrop-0 -m limit --limit 1/second -j LOG
-A logdrop-0 -j DROP
-A logdrop-1 -m limit --limit 1/second -j LOG
-A logdrop-1 -j DROP
-A logdrop-10 -m limit --limit 1/second -j LOG
-A logdrop-10 -j DROP
+-A logdrop-11 -m limit --limit 1/second -j LOG
+-A logdrop-11 -j DROP
+-A logdrop-12 -m limit --limit 1/second -j LOG
+-A logdrop-12 -j DROP
+-A logdrop-13 -m limit --limit 1/second -j LOG
+-A logdrop-13 -j DROP
+-A logdrop-14 -m limit --limit 1/second -j LOG
+-A logdrop-14 -j DROP
-A logdrop-2 -m limit --limit 1/second -j LOG
-A logdrop-2 -j DROP
-A logdrop-3 -m limit --limit 1/second -j LOG
generated by cgit v1.2.3 (git 2.25.1) at 2025-09-12 23:01:44 +0000