Problem with FASTSTART
Problem with FASTSTART
After start using the FASTSTART to use the CC_DENY and csf broken.
On the first install and configuration work normal, but on next day the csf crash and I need to disable the FASTSTART to work...
See the error:
csf: FASTSTART loading DROP no logging (IPv4)
LOG tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_IN Blocked* '
LOG tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x17/0x02 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *TCP_OUT Blocked* '
LOG udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_IN Blocked* '
LOG udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *UDP_OUT Blocked* '
LOG icmp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_IN Blocked* '
LOG icmp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *ICMP_OUT Blocked* '
LOG all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *Port Flood* '
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
DENYOUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
DENYIN all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
ALLOWOUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
ALLOWIN all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
csf: FASTSTART loading Packet Filter (IPv4)
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
INVALID tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
INVALID tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
csf: FASTSTART loading csf.deny (IPv4)
csf: FASTSTART loading csf.deny (IPv4 nat)
Error: FASTTART: Bad argument `multiport', at line 3773
I am using the messenger with default ports(8888 and 8889) to ports 80,2082,2095
I disabled the CC_DENY but the problem continues.
This problem occours on all of my servers(12) with centos 6 64bits
Testing ip_tables/iptable_filter...OK
Testing ipt_LOG...OK
Testing ipt_multiport/xt_multiport...OK
Testing ipt_REJECT...OK
Testing ipt_state/xt_state...OK
Testing ipt_limit/xt_limit...OK
Testing ipt_recent...OK
Testing xt_connlimit...OK
Testing ipt_owner/xt_owner...OK
Testing iptable_nat/ipt_REDIRECT...OK
Testing iptable_nat/ipt_DNAT...OK
RESULT: csf should function on this server
On the first install and configuration work normal, but on next day the csf crash and I need to disable the FASTSTART to work...
See the error:
csf: FASTSTART loading DROP no logging (IPv4)
LOG tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_IN Blocked* '
LOG tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x17/0x02 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *TCP_OUT Blocked* '
LOG udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_IN Blocked* '
LOG udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *UDP_OUT Blocked* '
LOG icmp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_IN Blocked* '
LOG icmp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *ICMP_OUT Blocked* '
LOG all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *Port Flood* '
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
DENYOUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
DENYIN all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
ALLOWOUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
ALLOWIN all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
csf: FASTSTART loading Packet Filter (IPv4)
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
INVALID tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
INVALID tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
csf: FASTSTART loading csf.deny (IPv4)
csf: FASTSTART loading csf.deny (IPv4 nat)
Error: FASTTART: Bad argument `multiport', at line 3773
I am using the messenger with default ports(8888 and 8889) to ports 80,2082,2095
I disabled the CC_DENY but the problem continues.
This problem occours on all of my servers(12) with centos 6 64bits
Testing ip_tables/iptable_filter...OK
Testing ipt_LOG...OK
Testing ipt_multiport/xt_multiport...OK
Testing ipt_REJECT...OK
Testing ipt_state/xt_state...OK
Testing ipt_limit/xt_limit...OK
Testing ipt_recent...OK
Testing xt_connlimit...OK
Testing ipt_owner/xt_owner...OK
Testing iptable_nat/ipt_REDIRECT...OK
Testing iptable_nat/ipt_DNAT...OK
RESULT: csf should function on this server
-
- Moderator
- Posts: 1524
- Joined: 01 Oct 2008, 09:24
Re: Problem with FASTSTART
Try disabling FASTSTART and restart csf and pay close attention for any errors to see if it identifies where the error is.csf: FASTSTART loading csf.deny (IPv4 nat)
Error: FASTTART: Bad argument `multiport', at line 3773
Re: Problem with FASTSTART
Have this:
Flushing chain `INPUT'
Flushing chain `FORWARD'
Flushing chain `OUTPUT'
Flushing chain `PREROUTING'
Flushing chain `POSTROUTING'
Flushing chain `OUTPUT'
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:67
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:67
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:68
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:68
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:111
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:111
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:113
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:113
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpts:135:139
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpts:135:139
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:445
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:445
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:500
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:500
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:513
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:513
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:520
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:520
LOG tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_IN Blocked* '
LOG tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x17/0x02 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *TCP_OUT Blocked* '
LOG udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_IN Blocked* '
LOG udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *UDP_OUT Blocked* '
LOG icmp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_IN Blocked* '
LOG icmp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *ICMP_OUT Blocked* '
LOG all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *Port Flood* '
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
DENYOUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
DENYIN all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
ALLOWOUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
ALLOWIN all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
INVDROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 state INVALID
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x3F/0x00
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x3F/0x3F
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x03/0x03
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x06/0x06
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x05/0x05
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x11/0x01
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x18/0x08
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x30/0x20
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:!0x17/0x02 state NEW
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
INVALID tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
INVALID tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
DROP tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:21
DROP tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:2082
Bad argument `multiport'
Try `iptables -h' or 'iptables --help' for more information.
DROP tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:2083
DROP tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:2086
DROP all opt -- in !lo out * 187.41.70.100 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 187.41.70.100
REDIRECT tcp opt -- in !lo out * 187.41.70.100 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 186.202.122.116 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 186.202.122.116
REDIRECT tcp opt -- in !lo out * 186.202.122.116 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 179.182.55.160 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 179.182.55.160
REDIRECT tcp opt -- in !lo out * 179.182.55.160 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.34.245 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.34.245
REDIRECT tcp opt -- in !lo out * 69.64.34.245 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 173.45.92.98 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 173.45.92.98
REDIRECT tcp opt -- in !lo out * 173.45.92.98 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.32.63 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.32.63
REDIRECT tcp opt -- in !lo out * 69.64.32.63 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.34.188 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.34.188
REDIRECT tcp opt -- in !lo out * 69.64.34.188 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.34.83 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.34.83
REDIRECT tcp opt -- in !lo out * 69.64.34.83 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.33.6 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.33.6
REDIRECT tcp opt -- in !lo out * 69.64.33.6 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.35.7 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.35.7
REDIRECT tcp opt -- in !lo out * 69.64.35.7 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.33.16 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.33.16
REDIRECT tcp opt -- in !lo out * 69.64.33.16 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.33.87 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.33.87
REDIRECT tcp opt -- in !lo out * 69.64.33.87 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.32.126 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.32.126
REDIRECT tcp opt -- in !lo out * 69.64.32.126 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 116.202.78.128 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 116.202.78.128
REDIRECT tcp opt -- in !lo out * 116.202.78.128 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 36.251.84.244 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 36.251.84.244
REDIRECT tcp opt -- in !lo out * 36.251.84.244 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT all opt -- in !lo out * 74.222.4.64/28 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 74.222.4.64/28
ACCEPT all opt -- in !lo out * 199.217.113.208 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.113.208
ACCEPT all opt -- in !lo out * 96.9.129.234 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 96.9.129.234
ACCEPT all opt -- in !lo out * 64.120.227.202 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.120.227.202
ACCEPT all opt -- in !lo out * 69.64.61.108 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.61.108
ACCEPT all opt -- in !lo out * 69.64.61.125 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.61.125
ACCEPT all opt -- in !lo out * 69.64.32.176 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.32.176
ACCEPT all opt -- in !lo out * 199.217.119.214 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.119.214
ACCEPT all opt -- in !lo out * 96.9.168.50 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 96.9.168.50
ACCEPT all opt -- in !lo out * 199.217.115.199 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.115.199
ACCEPT all opt -- in !lo out * 64.120.208.218 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.120.208.218
ACCEPT all opt -- in !lo out * 64.120.236.66 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.120.236.66
ACCEPT all opt -- in !lo out * 69.64.58.244 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.58.244
ACCEPT all opt -- in !lo out * 184.82.133.42 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 184.82.133.42
ACCEPT all opt -- in !lo out * 69.64.46.226 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.46.226
ACCEPT all opt -- in !lo out * 184.82.154.218 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 184.82.154.218
ACCEPT all opt -- in !lo out * 74.222.3.32/28 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 74.222.3.32/28
ACCEPT all opt -- in !lo out * 70.36.96.19 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 70.36.96.19
ACCEPT all opt -- in !lo out * 64.56.64.54 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.56.64.54
ACCEPT all opt -- in !lo out * 199.217.119.93 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.119.93
ACCEPT all opt -- in !lo out * 199.217.119.74 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.119.74
GALLOWIN all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
GALLOWOUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT all opt -- in !lo out * 74.222.4.64/28 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 74.222.4.64/28
ACCEPT all opt -- in !lo out * 199.217.113.208 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.113.208
ACCEPT all opt -- in !lo out * 96.9.129.234 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 96.9.129.234
ACCEPT all opt -- in !lo out * 64.120.227.202 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.120.227.202
ACCEPT all opt -- in !lo out * 69.64.61.108 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.61.108
ACCEPT all opt -- in !lo out * 69.64.61.125 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.61.125
ACCEPT all opt -- in !lo out * 69.64.32.176 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.32.176
ACCEPT all opt -- in !lo out * 199.217.119.214 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.119.214
ACCEPT all opt -- in !lo out * 96.9.168.50 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 96.9.168.50
ACCEPT all opt -- in !lo out * 199.217.115.199 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.115.199
ACCEPT all opt -- in !lo out * 64.120.208.218 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.120.208.218
ACCEPT all opt -- in !lo out * 64.120.236.66 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.120.236.66
ACCEPT all opt -- in !lo out * 69.64.58.244 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.58.244
ACCEPT all opt -- in !lo out * 184.82.133.42 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 184.82.133.42
ACCEPT all opt -- in !lo out * 69.64.46.226 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.46.226
ACCEPT all opt -- in !lo out * 184.82.154.218 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 184.82.154.218
ACCEPT all opt -- in !lo out * 74.222.3.32/28 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 74.222.3.32/28
ACCEPT all opt -- in !lo out * 70.36.96.19 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 70.36.96.19
ACCEPT all opt -- in !lo out * 64.56.64.54 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.56.64.54
ACCEPT all opt -- in !lo out * 199.217.119.93 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.119.93
ACCEPT all opt -- in !lo out * 199.217.119.74 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.119.74
WARNING: count in PORTFLOOD setting must be between 1 and 20: [80;tcp;50;300]
WARNING: count in PORTFLOOD setting must be between 1 and 20: [443;tcp;50;300]
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
CONNLIMIT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:80 flags:0x17/0x02 #conn/32 > 50
CONNLIMIT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:443 flags:0x17/0x02 #conn/32 > 50
REJECT tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 reject-with tcp-reset
ACCEPT all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state RELATED,ESTABLISHED
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state RELATED,ESTABLISHED
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:20
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:21
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:22
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:25
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:53
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:80
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:110
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:143
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:443
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:465
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:587
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:993
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:995
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2077
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2078
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2095
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2096
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:6985
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpts:35000:35999
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:3306
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpts:12000:13000
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:20
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:21
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:22
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:25
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:37
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:43
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:80
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:110
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:113
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:443
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:587
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:873
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2086
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2087
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2089
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2703
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:3306
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpts:8000:34999
ACCEPT udp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:20
ACCEPT udp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:21
ACCEPT udp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:20
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:21
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:113
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:123
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:873
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:6277
ACCEPT icmp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 icmp type 8 limit: avg 1/sec burst 5
ACCEPT icmp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 icmp type 0
ACCEPT icmp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 icmp type 8
ACCEPT icmp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 icmp type 0 limit: avg 1/sec burst 5
ACCEPT icmp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 icmp type 11
ACCEPT icmp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 icmp type 3
ACCEPT icmp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 icmp type 11
ACCEPT icmp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 icmp type 3
ACCEPT all opt -- in lo out * 0.0.0.0/0 -> 0.0.0.0/0
ACCEPT all opt -- in * out lo 0.0.0.0/0 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
LOGDROPIN all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 udp spt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 tcp spt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:53
ACCEPT udp opt -- in !lo out * 8.8.8.8 -> 0.0.0.0/0 udp spt:53
ACCEPT tcp opt -- in !lo out * 8.8.8.8 -> 0.0.0.0/0 tcp spt:53
ACCEPT udp opt -- in !lo out * 8.8.8.8 -> 0.0.0.0/0 udp dpt:53
ACCEPT tcp opt -- in !lo out * 8.8.8.8 -> 0.0.0.0/0 tcp dpt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 8.8.8.8 udp spt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 8.8.8.8 tcp spt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 8.8.8.8 udp dpt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 8.8.8.8 tcp dpt:53
ACCEPT udp opt -- in !lo out * 8.8.4.4 -> 0.0.0.0/0 udp spt:53
ACCEPT tcp opt -- in !lo out * 8.8.4.4 -> 0.0.0.0/0 tcp spt:53
ACCEPT udp opt -- in !lo out * 8.8.4.4 -> 0.0.0.0/0 udp dpt:53
ACCEPT tcp opt -- in !lo out * 8.8.4.4 -> 0.0.0.0/0 tcp dpt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 8.8.4.4 udp spt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 8.8.4.4 tcp spt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 8.8.4.4 udp dpt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 8.8.4.4 tcp dpt:53
Restarting bandmin acctboth chains for cPanel
acctboth all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
acctboth all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
acctboth all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
acctboth all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:82 limit: avg 30/min burst 5
iptables v1.4.7: invalid port/service `-m' specified
Try `iptables -h' or 'iptables --help' for more information.
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 tcp spt:82 limit: avg 30/min burst 5
iptables v1.4.7: invalid port/service `-m' specified
Try `iptables -h' or 'iptables --help' for more information.
LOCALOUTPUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
LOCALINPUT all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
Flushing chain `INPUT'
Flushing chain `FORWARD'
Flushing chain `OUTPUT'
Flushing chain `PREROUTING'
Flushing chain `POSTROUTING'
Flushing chain `OUTPUT'
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:67
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:67
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:68
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:68
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:111
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:111
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:113
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:113
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpts:135:139
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpts:135:139
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:445
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:445
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:500
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:500
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:513
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:513
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:520
DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:520
LOG tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_IN Blocked* '
LOG tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x17/0x02 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *TCP_OUT Blocked* '
LOG udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_IN Blocked* '
LOG udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *UDP_OUT Blocked* '
LOG icmp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_IN Blocked* '
LOG icmp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *ICMP_OUT Blocked* '
LOG all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *Port Flood* '
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
DENYOUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
DENYIN all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
ALLOWOUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
ALLOWIN all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
INVDROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 state INVALID
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x3F/0x00
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x3F/0x3F
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x03/0x03
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x06/0x06
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x05/0x05
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x11/0x01
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x18/0x08
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x30/0x20
INVDROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:!0x17/0x02 state NEW
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
INVALID tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
INVALID tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
DROP tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:21
DROP tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:2082
Bad argument `multiport'
Try `iptables -h' or 'iptables --help' for more information.
DROP tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:2083
DROP tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:2086
DROP all opt -- in !lo out * 187.41.70.100 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 187.41.70.100
REDIRECT tcp opt -- in !lo out * 187.41.70.100 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 186.202.122.116 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 186.202.122.116
REDIRECT tcp opt -- in !lo out * 186.202.122.116 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 179.182.55.160 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 179.182.55.160
REDIRECT tcp opt -- in !lo out * 179.182.55.160 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.34.245 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.34.245
REDIRECT tcp opt -- in !lo out * 69.64.34.245 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 173.45.92.98 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 173.45.92.98
REDIRECT tcp opt -- in !lo out * 173.45.92.98 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.32.63 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.32.63
REDIRECT tcp opt -- in !lo out * 69.64.32.63 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.34.188 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.34.188
REDIRECT tcp opt -- in !lo out * 69.64.34.188 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.34.83 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.34.83
REDIRECT tcp opt -- in !lo out * 69.64.34.83 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.33.6 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.33.6
REDIRECT tcp opt -- in !lo out * 69.64.33.6 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.35.7 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.35.7
REDIRECT tcp opt -- in !lo out * 69.64.35.7 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.33.16 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.33.16
REDIRECT tcp opt -- in !lo out * 69.64.33.16 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.33.87 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.33.87
REDIRECT tcp opt -- in !lo out * 69.64.33.87 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 69.64.32.126 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.32.126
REDIRECT tcp opt -- in !lo out * 69.64.32.126 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 116.202.78.128 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 116.202.78.128
REDIRECT tcp opt -- in !lo out * 116.202.78.128 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
DROP all opt -- in !lo out * 36.251.84.244 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 36.251.84.244
REDIRECT tcp opt -- in !lo out * 36.251.84.244 -> 0.0.0.0/0 multiport dports 80,2082,2095 redir ports 82
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT all opt -- in !lo out * 74.222.4.64/28 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 74.222.4.64/28
ACCEPT all opt -- in !lo out * 199.217.113.208 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.113.208
ACCEPT all opt -- in !lo out * 96.9.129.234 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 96.9.129.234
ACCEPT all opt -- in !lo out * 64.120.227.202 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.120.227.202
ACCEPT all opt -- in !lo out * 69.64.61.108 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.61.108
ACCEPT all opt -- in !lo out * 69.64.61.125 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.61.125
ACCEPT all opt -- in !lo out * 69.64.32.176 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.32.176
ACCEPT all opt -- in !lo out * 199.217.119.214 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.119.214
ACCEPT all opt -- in !lo out * 96.9.168.50 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 96.9.168.50
ACCEPT all opt -- in !lo out * 199.217.115.199 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.115.199
ACCEPT all opt -- in !lo out * 64.120.208.218 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.120.208.218
ACCEPT all opt -- in !lo out * 64.120.236.66 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.120.236.66
ACCEPT all opt -- in !lo out * 69.64.58.244 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.58.244
ACCEPT all opt -- in !lo out * 184.82.133.42 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 184.82.133.42
ACCEPT all opt -- in !lo out * 69.64.46.226 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.46.226
ACCEPT all opt -- in !lo out * 184.82.154.218 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 184.82.154.218
ACCEPT all opt -- in !lo out * 74.222.3.32/28 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 74.222.3.32/28
ACCEPT all opt -- in !lo out * 70.36.96.19 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 70.36.96.19
ACCEPT all opt -- in !lo out * 64.56.64.54 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.56.64.54
ACCEPT all opt -- in !lo out * 199.217.119.93 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.119.93
ACCEPT all opt -- in !lo out * 199.217.119.74 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.119.74
GALLOWIN all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
GALLOWOUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:21
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 150.165.128.0/17 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 177.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 179.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 186.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 187.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 189.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 191.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 200.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 201.0.0.0/8 -> 0.0.0.0/0 tcp dpt:2087
ACCEPT all opt -- in !lo out * 74.222.4.64/28 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 74.222.4.64/28
ACCEPT all opt -- in !lo out * 199.217.113.208 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.113.208
ACCEPT all opt -- in !lo out * 96.9.129.234 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 96.9.129.234
ACCEPT all opt -- in !lo out * 64.120.227.202 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.120.227.202
ACCEPT all opt -- in !lo out * 69.64.61.108 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.61.108
ACCEPT all opt -- in !lo out * 69.64.61.125 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.61.125
ACCEPT all opt -- in !lo out * 69.64.32.176 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.32.176
ACCEPT all opt -- in !lo out * 199.217.119.214 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.119.214
ACCEPT all opt -- in !lo out * 96.9.168.50 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 96.9.168.50
ACCEPT all opt -- in !lo out * 199.217.115.199 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.115.199
ACCEPT all opt -- in !lo out * 64.120.208.218 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.120.208.218
ACCEPT all opt -- in !lo out * 64.120.236.66 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.120.236.66
ACCEPT all opt -- in !lo out * 69.64.58.244 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.58.244
ACCEPT all opt -- in !lo out * 184.82.133.42 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 184.82.133.42
ACCEPT all opt -- in !lo out * 69.64.46.226 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 69.64.46.226
ACCEPT all opt -- in !lo out * 184.82.154.218 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 184.82.154.218
ACCEPT all opt -- in !lo out * 74.222.3.32/28 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 74.222.3.32/28
ACCEPT all opt -- in !lo out * 70.36.96.19 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 70.36.96.19
ACCEPT all opt -- in !lo out * 64.56.64.54 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 64.56.64.54
ACCEPT all opt -- in !lo out * 199.217.119.93 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.119.93
ACCEPT all opt -- in !lo out * 199.217.119.74 -> 0.0.0.0/0
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 199.217.119.74
WARNING: count in PORTFLOOD setting must be between 1 and 20: [80;tcp;50;300]
WARNING: count in PORTFLOOD setting must be between 1 and 20: [443;tcp;50;300]
DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
CONNLIMIT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:80 flags:0x17/0x02 #conn/32 > 50
CONNLIMIT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:443 flags:0x17/0x02 #conn/32 > 50
REJECT tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 reject-with tcp-reset
ACCEPT all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state RELATED,ESTABLISHED
ACCEPT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state RELATED,ESTABLISHED
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:20
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:21
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:22
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:25
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:53
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:80
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:110
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:143
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:443
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:465
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:587
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:993
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:995
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2077
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2078
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2082
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2083
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2086
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2087
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2095
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2096
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:6985
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpts:35000:35999
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:3306
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpts:12000:13000
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:20
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:21
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:22
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:25
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:37
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:43
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:80
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:110
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:113
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:443
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:587
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:873
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2086
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2087
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2089
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:2703
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpt:3306
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW tcp dpts:8000:34999
ACCEPT udp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:20
ACCEPT udp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:21
ACCEPT udp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:20
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:21
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:113
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:123
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:873
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 state NEW udp dpt:6277
ACCEPT icmp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 icmp type 8 limit: avg 1/sec burst 5
ACCEPT icmp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 icmp type 0
ACCEPT icmp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 icmp type 8
ACCEPT icmp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 icmp type 0 limit: avg 1/sec burst 5
ACCEPT icmp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 icmp type 11
ACCEPT icmp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 icmp type 3
ACCEPT icmp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 icmp type 11
ACCEPT icmp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 icmp type 3
ACCEPT all opt -- in lo out * 0.0.0.0/0 -> 0.0.0.0/0
ACCEPT all opt -- in * out lo 0.0.0.0/0 -> 0.0.0.0/0
LOGDROPOUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
LOGDROPIN all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 udp spt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 tcp spt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:53
ACCEPT udp opt -- in !lo out * 8.8.8.8 -> 0.0.0.0/0 udp spt:53
ACCEPT tcp opt -- in !lo out * 8.8.8.8 -> 0.0.0.0/0 tcp spt:53
ACCEPT udp opt -- in !lo out * 8.8.8.8 -> 0.0.0.0/0 udp dpt:53
ACCEPT tcp opt -- in !lo out * 8.8.8.8 -> 0.0.0.0/0 tcp dpt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 8.8.8.8 udp spt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 8.8.8.8 tcp spt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 8.8.8.8 udp dpt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 8.8.8.8 tcp dpt:53
ACCEPT udp opt -- in !lo out * 8.8.4.4 -> 0.0.0.0/0 udp spt:53
ACCEPT tcp opt -- in !lo out * 8.8.4.4 -> 0.0.0.0/0 tcp spt:53
ACCEPT udp opt -- in !lo out * 8.8.4.4 -> 0.0.0.0/0 udp dpt:53
ACCEPT tcp opt -- in !lo out * 8.8.4.4 -> 0.0.0.0/0 tcp dpt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 8.8.4.4 udp spt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 8.8.4.4 tcp spt:53
ACCEPT udp opt -- in * out !lo 0.0.0.0/0 -> 8.8.4.4 udp dpt:53
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 8.8.4.4 tcp dpt:53
Restarting bandmin acctboth chains for cPanel
acctboth all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
acctboth all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
acctboth all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
acctboth all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
ACCEPT tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:82 limit: avg 30/min burst 5
iptables v1.4.7: invalid port/service `-m' specified
Try `iptables -h' or 'iptables --help' for more information.
ACCEPT tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0 tcp spt:82 limit: avg 30/min burst 5
iptables v1.4.7: invalid port/service `-m' specified
Try `iptables -h' or 'iptables --help' for more information.
LOCALOUTPUT all opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0
LOCALINPUT all opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0
Re: Problem with FASTSTART
I am clear the csf.deny and resolved, but this file not have bad rules... I ever used this rules and this problem start now.
The content of csf.deny is:
tcp:in:d=21:d=0.0.0.0/0 # do not delete
tcp:in:d=2082:d=0.0.0.0/0 # do not delete
tcp:in:d=2083:d=0.0.0.0/0 # do not delete
tcp:in:d=2086:d=0.0.0.0/0 # do not delete
The content of csf.deny is:
tcp:in:d=21:d=0.0.0.0/0 # do not delete
tcp:in:d=2082:d=0.0.0.0/0 # do not delete
tcp:in:d=2083:d=0.0.0.0/0 # do not delete
tcp:in:d=2086:d=0.0.0.0/0 # do not delete
Re: Problem with FASTSTART
The correct format is:
tcp:in:d=21:d=0.0.0.0/0
or
tcp|in|d=21|d=0.0.0.0/0
: or | ?
tcp:in:d=21:d=0.0.0.0/0
or
tcp|in|d=21|d=0.0.0.0/0
: or | ?
-
- Moderator
- Posts: 1524
- Joined: 01 Oct 2008, 09:24
Re: Problem with FASTSTART
The issue is with your MESSENGER service settings. What do you have set for:
Code: Select all
MESSENGER_TEXT
MESSENGER_HTML
MESSENGER_RATE
MESSENGER_BURST
Re: Problem with FASTSTART
MESSENGER_TEXT = "8889"
MESSENGER_HTML = "8888"
MESSENGER_RATE = "30/m"
MESSENGER_BURST = "5"
MESSENGER_HTML_IN = "80,2082,2095"
MESSENGER_TEXT_IN = "21"
MESSENGER_HTML = "8888"
MESSENGER_RATE = "30/m"
MESSENGER_BURST = "5"
MESSENGER_HTML_IN = "80,2082,2095"
MESSENGER_TEXT_IN = "21"
-
- Moderator
- Posts: 1524
- Joined: 01 Oct 2008, 09:24
Re: Problem with FASTSTART
Those should be fine. I'd suggest upgrading to the latest version (v7.02) and then restarting again with FASTSTART disabled and see what the errors now read as there should be more information.
Re: Problem with FASTSTART
I removed and reinstalleed and now show this error:
*ERROR* line:[789]
Command:[/sbin/iptables -v -I INPUT ! -i lo -p tcp --dport -m limit --limit 30/m --limit-burst 5 -j ACCEPT]
Error:[iptables v1.4.7: invalid port/service `-m' specified]
You should check through the main output carefully
The problem is the port that csf not added to the iptables command line:
/sbin/iptables -v -I INPUT ! -i lo -p tcp --dport ?????? -m limit --limit 30/m --limit-burst 5 -j ACCEPT
correct:
/sbin/iptables -v -I INPUT ! -i lo -p tcp --dport XXXXX -m limit --limit 30/m --limit-burst 5 -j ACCEPT
*ERROR* line:[789]
Command:[/sbin/iptables -v -I INPUT ! -i lo -p tcp --dport -m limit --limit 30/m --limit-burst 5 -j ACCEPT]
Error:[iptables v1.4.7: invalid port/service `-m' specified]
You should check through the main output carefully
The problem is the port that csf not added to the iptables command line:
/sbin/iptables -v -I INPUT ! -i lo -p tcp --dport ?????? -m limit --limit 30/m --limit-burst 5 -j ACCEPT
correct:
/sbin/iptables -v -I INPUT ! -i lo -p tcp --dport XXXXX -m limit --limit 30/m --limit-burst 5 -j ACCEPT
Re: Problem with FASTSTART
Resolved, the problem is the content of the csf.deny I used the : to separate but the correct is |