*filter
:INPUT DROP [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [102:15912]
:APPLICATION_FILTER – [0:0]
:INTRUSION_PREVENTION_FILTER – [0:0]
:USER_DEFINED_FILTER – [0:0]
-A INPUT -i lo -j ACCEPT
-A INPUT -j INTRUSION_PREVENTION_FILTER
-A INPUT -j APPLICATION_FILTER
-A INPUT -j USER_DEFINED_FILTER
-A OUTPUT -m state –state RELATED,ESTABLISHED -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 22 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 22 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 80 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 80 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 443 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 443 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 5900 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 5900 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 631 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 631 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 135 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 135 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 137 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 137 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 137 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 137 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 138 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 138 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 139 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 139 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 445 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 445 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 445 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 445 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 20 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 20 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 21 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 21 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 548 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 548 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 1:65535 –dport 5353 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 1:65535 –dport 5353 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 22 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 22 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 80 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 80 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 443 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 443 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 5900 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 5900 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 631 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 631 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 135 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 135 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 138 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 138 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 139 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 139 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 20 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 20 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 21 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 21 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 548 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 548 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p tcp -m tcp –sport 5353 –dport 1:65535 -j ACCEPT
-A APPLICATION_FILTER -p udp -m udp –sport 5353 –dport 1:65535 -j ACCEPT
COMMIT