hello,
this the resulat:
num target prot opt source destination
Chain AS0_MANGLE_PRE_REL_EST (1 references)
num target prot opt source destination
1 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_MANGLE_TUN (1 references)
num target prot opt source destination
1 MARK all -- 0.0.0.0/0 0.0.0.0/0 MARK set 0x2000000
2 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
Table: filter
Chain INPUT (policy ACCEPT)
num target prot opt source destination
1 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:3389
2 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:1194
3 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:1194
4 AS0_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
5 AS0_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
6 AS0_IN_PRE all -- 0.0.0.0/0 0.0.0.0/0 MARK match 0x2000000/0x2000000
7 AS0_ACCEPT tcp -- 0.0.0.0/0 208.67.18.35 state NEW tcp dpt:915
8 AS0_ACCEPT tcp -- 0.0.0.0/0 208.67.18.35 state NEW tcp dpt:914
9 AS0_ACCEPT udp -- 0.0.0.0/0 208.67.18.35 state NEW udp dpt:917
10 AS0_ACCEPT udp -- 0.0.0.0/0 208.67.18.35 state NEW udp dpt:916
11 AS0_WEBACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
12 AS0_WEBACCEPT tcp -- 0.0.0.0/0 208.67.18.35 state NEW tcp dpt:943
Chain FORWARD (policy ACCEPT)
num target prot opt source destination
1 AS0_ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
2 AS0_IN_PRE all -- 0.0.0.0/0 0.0.0.0/0 MARK match 0x2000000/0x2000000
3 AS0_OUT_S2C all -- 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT)
num target prot opt source destination
1 AS0_OUT_LOCAL all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_ACCEPT (7 references)
num target prot opt source destination
1 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_IN (4 references)
num target prot opt source destination
1 ACCEPT all -- 0.0.0.0/0 5.5.0.1
2 AS0_IN_POST all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_IN_POST (1 references)
num target prot opt source destination
1 AS0_OUT all -- 0.0.0.0/0 0.0.0.0/0
2 DROP all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_IN_PRE (2 references)
num target prot opt source destination
1 AS0_IN all -- 0.0.0.0/0 5.5.0.0/20
2 AS0_IN all -- 0.0.0.0/0 192.168.0.0/16
3 AS0_IN all -- 0.0.0.0/0 172.16.0.0/12
4 AS0_IN all -- 0.0.0.0/0 10.0.0.0/8
5 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_OUT (2 references)
num target prot opt source destination
1 DROP all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_OUT_LOCAL (1 references)
num target prot opt source destination
1 DROP icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 5
2 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_OUT_S2C (1 references)
num target prot opt source destination
1 AS0_OUT all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_WEBACCEPT (2 references)
num target prot opt source destination
1 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
Table: nat
Chain PREROUTING (policy ACCEPT)
num target prot opt source destination
1 AS0_NAT_PRE_REL_EST all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
2 AS0_DPFWD_UDP udp -- 0.0.0.0/0 208.67.18.35 udp dpt:3389 state NEW
3 AS0_DPFWD_TCP tcp -- 0.0.0.0/0 208.67.18.35 tcp dpt:443 state NEW
Chain POSTROUTING (policy ACCEPT)
num target prot opt source destination
1 AS0_NAT_POST_REL_EST all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
2 AS0_NAT_PRE all -- 0.0.0.0/0 0.0.0.0/0 MARK match 0x2000000/0x2000000
Chain OUTPUT (policy ACCEPT)
num target prot opt source destination
Chain AS0_DPFWD_TCP (1 references)
num target prot opt source destination
1 DNAT tcp -- 0.0.0.0/0 0.0.0.0/0 to:208.67.18.35:914
2 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_DPFWD_UDP (1 references)
num target prot opt source destination
1 DNAT udp -- 0.0.0.0/0 0.0.0.0/0 to:208.67.18.35:916
2 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_NAT (2 references)
num target prot opt source destination
1 SNAT all -- 0.0.0.0/0 0.0.0.0/0 to:208.67.18.35
2 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_NAT_POST_REL_EST (1 references)
num target prot opt source destination
1 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_NAT_PRE (1 references)
num target prot opt source destination
1 AS0_NAT_TEST all -- 0.0.0.0/0 5.5.0.0/20
2 AS0_NAT_TEST all -- 0.0.0.0/0 192.168.0.0/16
3 AS0_NAT_TEST all -- 0.0.0.0/0 172.16.0.0/12
4 AS0_NAT_TEST all -- 0.0.0.0/0 10.0.0.0/8
5 AS0_NAT all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_NAT_PRE_REL_EST (1 references)
num target prot opt source destination
1 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
Chain AS0_NAT_TEST (4 references)
num target prot opt source destination
1 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
2 ACCEPT all -- 0.0.0.0/0 5.5.0.0/20
3 AS0_NAT all -- 0.0.0.0/0 0.0.0.0/0
[root@ov ~]#
[root@ov ~]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT udp -- anywhere anywhere udp dpt:ms-wbt-server
ACCEPT udp -- anywhere anywhere udp dpt
penvpn
ACCEPT udp -- anywhere anywhere udp dpt
penvpn
AS0_ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
AS0_ACCEPT all -- anywhere anywhere
AS0_IN_PRE all -- anywhere anywhere MARK match 0x2000000/0x2000000
AS0_ACCEPT tcp -- anywhere ov.aminbaik.com state NEW tcp dpt:915
AS0_ACCEPT tcp -- anywhere ov.aminbaik.com state NEW tcp dpt:914
AS0_ACCEPT udp -- anywhere ov.aminbaik.com state NEW udp dpt:917
AS0_ACCEPT udp -- anywhere ov.aminbaik.com state NEW udp dpt:916
AS0_WEBACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
AS0_WEBACCEPT tcp -- anywhere ov.aminbaik.com state NEW tcp dpt:943
Chain FORWARD (policy ACCEPT)
target prot opt source destination
AS0_ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
AS0_IN_PRE all -- anywhere anywhere MARK match 0x2000000/0x2000000
AS0_OUT_S2C all -- anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
AS0_OUT_LOCAL all -- anywhere anywhere
Chain AS0_ACCEPT (7 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
Chain AS0_IN (4 references)
target prot opt source destination
ACCEPT all -- anywhere 5.5.0.1
AS0_IN_POST all -- anywhere anywhere
Chain AS0_IN_POST (1 references)
target prot opt source destination
AS0_OUT all -- anywhere anywhere
DROP all -- anywhere anywhere
Chain AS0_IN_PRE (2 references)
target prot opt source destination
AS0_IN all -- anywhere 5.5.0.0/20
AS0_IN all -- anywhere 192.168.0.0/16
AS0_IN all -- anywhere 172.16.0.0/12
AS0_IN all -- anywhere 10.0.0.0/8
ACCEPT all -- anywhere anywhere
Chain AS0_OUT (2 references)
target prot opt source destination
DROP all -- anywhere anywhere
Chain AS0_OUT_LOCAL (1 references)
target prot opt source destination
DROP icmp -- anywhere anywhere icmp redirect
ACCEPT all -- anywhere anywhere
Chain AS0_OUT_S2C (1 references)
target prot opt source destination
AS0_OUT all -- anywhere anywhere
Chain AS0_WEBACCEPT (2 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
i want to accept all trafic to server from anyway i am know that is a risk but is just for test.
thanks.