"TRUSTED" is a user created table, traffic reaching it will have had to already passed a rule in INPUT, and then another user created table, "FILTER" bit odd, but never mind.
So only traffic hitting these rules is visible:
-A FILTER -p udp -m udp --sport 500 --dport 500 -j TRUSTED
-A FILTER -p udp -m udp --sport 4500 --dport 4500 -j TRUSTED
-A FILTER -p tcp -m tcp --dport 7736 -j TRUSTED
-A FILTER -p tcp -m tcp --sport 7736 -j TRUSTED
-A FILTER -p tcp -m tcp --dport 22337 -j TRUSTED
-A FILTER -p tcp -m tcp --sport 22337 -j TRUSTED
-A FILTER -p tcp -m tcp --dport 22 -j TRUSTED
-A FILTER -p tcp -m tcp --sport 22 -j TRUSTED
and clearly none of those will cover snmp.
Based on the unusual framework you've built up, you would probably want to change
-A TRUSTED -s IPADDR -p tcp -m tcp --dport 161:162 -j ACCEPT
-A TRUSTED -s IPADDR -p udp -m udp --dport 161:162 -j ACCEPT
-A TRUSTED -s IPADDR -p tcp -m tcp --dport 161:162 -j ACCEPT
-A TRUSTED -s IPADDR -p udp -m udp --dport 161:162 -j ACCEPT
to
-A FILTER -p udp -m udp --dport 161:162 -j TRUSTED
presuming that this "IPADDR" value is also the same one in the existing "TRUSTED" entry:
-A TRUSTED -s IPADDR -j ACCEPT
and of cours,e delete all those extra identical entries in "TRUSTED"
|