- 论坛徽章:
- 0
|
[root@ftp2 protocols]# iptables-save
# Generated by iptables-save v1.4.2 on Wed Oct 15 17:45:21 2008
*mangle
REROUTING ACCEPT [284662:348227745]
:INPUT ACCEPT [258406:344611153]
:FORWARD ACCEPT [21241:2905243]
:OUTPUT ACCEPT [126426:7221887]
OSTROUTING ACCEPT [147360:10083158]
-A PREROUTING -m layer7 --l7proto msnmessenger -j DROP
-A POSTROUTING -m layer7 --l7proto qq -j DROP
-A POSTROUTING -m layer7 --l7proto msnmessenger -j DROP
-A POSTROUTING -m layer7 --l7proto qq -j DROP
COMMIT
# Completed on Wed Oct 15 17:45:21 2008
# Generated by iptables-save v1.4.2 on Wed Oct 15 17:45:21 2008
*filter
:INPUT ACCEPT [258457:344615162]
:FORWARD ACCEPT [20992:2868416]
:OUTPUT ACCEPT [126460:7225647]
-A FORWARD -m layer7 --l7proto msnmessenger -j DROP
-A FORWARD -m layer7 --l7proto msnmessenger -j DROP
-A FORWARD -p tcp -m layer7 --l7proto socks -j DROP
-A FORWARD -p udp -m udp --dport 8000 -j DROP
-A FORWARD -p tcp -m multiport --dports 80,443 -m layer7 --l7proto qq -j DROP
COMMIT
# Completed on Wed Oct 15 17:45:21 2008 |
|