JustPaste.it - Share Text & Images the Easy Way

# Generated by xtables-save v1.8.3 on Sat Nov 2 10:20:22 2019
*filter
:INPUT DROP [4909:459707]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [19743:2743366]
:LOGGING - [0:0]
:SSH-RULES - [0:0]
-A INPUT -i lo -m comment --comment "Enable loopback interface" -j ACCEPT
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "Allow established, related incoming packets" -j ACCEPT
-A INPUT -p tcp -m tcp --dport 22 -m conntrack --ctstate NEW -j SSH-RULES
-A INPUT -m conntrack --ctstate INVALID -m comment --comment "Drop Invalid packets" -j DROP
-A INPUT -j LOGGING
-A OUTPUT -o lo -m comment --comment "Enable loopback interface" -j ACCEPT
-A LOGGING -m limit --limit 1/sec -j LOG --log-prefix "IPTables packet DROP: " --log-level 7
-A LOGGING -j DROP
-A SSH-RULES -m recent --set --name SSH --mask 255.255.255.255 --rsource
-A SSH-RULES -m recent --update --seconds 3600 --hitcount 5 --name SSH --mask 255.255.255.255 --rsource -j LOG --log-prefix "Anti SSH-Bruteforce: " --log-level 6
-A SSH-RULES -m recent --update --seconds 3600 --hitcount 5 --name SSH --mask 255.255.255.255 --rsource -j DROP
-A SSH-RULES -j ACCEPT
COMMIT
# Completed on Sat Nov 2 10:20:22 2019