Hello,
I may have been a little brief in my previous post, so here's some more detailed information.
Sme server 6.5RC1 based on redhat 7.3
standard load from cdrom image.
The machine is setup as a gateway/server
2 network cards, 1 pointing to adsl modem (in bridge mode) 1 pointing back to the hub.
adsl modem is a speedtouch pro
here's the iptables output with 'iptables -L -n'
[root@eagle root]# iptables -L -n
Chain INPUT (policy DROP)
target prot opt source destination
DROP all -- 219.139.44.26 0.0.0.0/0
DROP all -- 219.129.237.22 0.0.0.0/0
DROP all -- 219.129.21.113 0.0.0.0/0
DROP all -- 219.129.21.112 0.0.0.0/0
DROP all -- 216.148.234.185 0.0.0.0/0
DROP all -- 212.23.166.71 0.0.0.0/0
DROP all -- 211.99.194.143 0.0.0.0/0
DROP all -- 211.72.249.200 0.0.0.0/0
DROP all -- 202.104.237.187 0.0.0.0/0
DROP all -- 202.103.178.228 0.0.0.0/0
DROP all -- 202.103.178.208 0.0.0.0/0
DROP all -- 202.103.178.150 0.0.0.0/0
DROP all -- 195.33.130.135 0.0.0.0/0
DROP all -- 195.33.130.133 0.0.0.0/0
DROP all -- 83.14.137.66 0.0.0.0/0
DROP all -- 61.215.87.211 0.0.0.0/0
DROP all -- 59.34.196.64 0.0.0.0/0
state_chk all -- 0.0.0.0/0 0.0.0.0/0
local_chk all -- 0.0.0.0/0 0.0.0.0/0
PPPconn all -- 0.0.0.0/0 0.0.0.0/0
denylog all -- 224.0.0.0/4 0.0.0.0/0
denylog all -- 0.0.0.0/0 224.0.0.0/4
InboundICMP icmp -- 0.0.0.0/0 0.0.0.0/0
denylog icmp -- 0.0.0.0/0 0.0.0.0/0
InboundTCP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02
denylog tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02
InboundUDP udp -- 0.0.0.0/0 0.0.0.0/0
denylog udp -- 0.0.0.0/0 0.0.0.0/0
gre-in 47 -- 0.0.0.0/0 0.0.0.0/0
denylog 47 -- 0.0.0.0/0 0.0.0.0/0
denylog all -- 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy DROP)
target prot opt source destination
ForwardDenyLocals all -- 0.0.0.0/0 0.0.0.0/0
state_chk all -- 0.0.0.0/0 0.0.0.0/0
local_chk all -- 0.0.0.0/0 0.0.0.0/0
ForwardedTCP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02
ForwardedUDP udp -- 0.0.0.0/0 0.0.0.0/0
denylog all -- 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
PPPconn all -- 0.0.0.0/0 0.0.0.0/0
denylog all -- 224.0.0.0/4 0.0.0.0/0
denylog all -- 0.0.0.0/0 224.0.0.0/4
OutboundICMP icmp -- 0.0.0.0/0 0.0.0.0/0
denylog icmp -- 0.0.0.0/0 0.0.0.0/0
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
Chain ForwardDenyLocals (1 references)
target prot opt source destination
Chain ForwardedTCP (1 references)
target prot opt source destination
ForwardedTCP_21714 all -- 0.0.0.0/0 0.0.0.0/0
denylog tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02
Chain ForwardedTCP_21714 (1 references)
target prot opt source destination
ACCEPT tcp -- 0.0.0.0/0 192.168.0.8 tcp dpt:24554
Chain ForwardedUDP (1 references)
target prot opt source destination
ForwardedUDP_21714 all -- 0.0.0.0/0 0.0.0.0/0
denylog udp -- 0.0.0.0/0 0.0.0.0/0
Chain ForwardedUDP_21714 (1 references)
target prot opt source destination
Chain InboundICMP (1 references)
target prot opt source destination
InboundICMP_21714 all -- 0.0.0.0/0 0.0.0.0/0
denylog icmp -- 0.0.0.0/0 0.0.0.0/0
Chain InboundICMP_21714 (1 references)
target prot opt source destination
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 11
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 12
denylog all -- 0.0.0.0/0 0.0.0.0/0
Chain InboundTCP (1 references)
target prot opt source destination
InboundTCP_21714 all -- 0.0.0.0/0 0.0.0.0/0
denylog tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02
Chain InboundTCP_21714 (1 references)
target prot opt source destination
denylog all -- 0.0.0.0/0 !58.6.37.26
ACCEPT tcp -- 0.0.0.0/0 58.6.37.26 tcp dpt:25
denylog tcp -- 0.0.0.0/0 58.6.37.26 tcp dpt:25
ACCEPT tcp -- 0.0.0.0/0 58.6.37.26 tcp dpt:465
denylog tcp -- 0.0.0.0/0 58.6.37.26 tcp dpt:465
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:113
denylog tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
denylog tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:143
denylog tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:993
denylog tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:389
denylog tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:110
denylog tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:995
denylog tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1723
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:25
denylog tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:465
denylog tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:23
Chain InboundUDP (1 references)
target prot opt source destination
InboundUDP_21714 all -- 0.0.0.0/0 0.0.0.0/0
denylog udp -- 0.0.0.0/0 0.0.0.0/0
Chain InboundUDP_21714 (1 references)
target prot opt source destination
denylog all -- 0.0.0.0/0 !58.6.37.26
Chain OutboundICMP (1 references)
target prot opt source destination
OutboundICMP_21714 all -- 0.0.0.0/0 0.0.0.0/0
denylog icmp -- 0.0.0.0/0 0.0.0.0/0
Chain OutboundICMP_21714 (1 references)
target prot opt source destination
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 11
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 12
denylog all -- 0.0.0.0/0 0.0.0.0/0
Chain PPPconn (2 references)
target prot opt source destination
PPPconn_1 all -- 0.0.0.0/0 0.0.0.0/0
Chain PPPconn_1 (1 references)
target prot opt source destination
Chain denylog (34 references)
target prot opt source destination
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:520
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpts:137:139
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpts:137:139
ULOG all -- 0.0.0.0/0 0.0.0.0/0 ULOG copy_range 0 nlgroup 1 prefix `drop:' queue_threshold 1
DROP all -- 0.0.0.0/0 0.0.0.0/0
Chain gre-in (1 references)
target prot opt source destination
denylog all -- 0.0.0.0/0 !58.6.37.26
denylog all -- 0.0.0.0/0 0.0.0.0/0
Chain local_chk (2 references)
target prot opt source destination
local_chk_21714 all -- 0.0.0.0/0 0.0.0.0/0
Chain local_chk_21714 (1 references)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT all -- 192.168.0.0/24 0.0.0.0/0
Chain state_chk (2 references)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
If you have any ideas, anything at all, I'm all ears.
(well not quite, but this is quite hard for me to get a handle on)