linux二层防火墙,我准备启用此功能(但是无法预知后果)
2009-11-12 19:23
441 查看
# Generated by arptables-save v0.0.8 on Thu Nov 12 13:01:14 2009
*filter
:IN ACCEPT [2543:71204]
:OUT ACCEPT [1619:45332]
:FORWARD ACCEPT [0:0]
:llpwip - [0:0]
[103:2884] -A IN -j llpwip
[0:0] -A FORWARD -j llpwip
[3:84] -A llpwip -s 172.20.1.104 -z 00:e0:4c:f8:c8:e1 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.160 -z 00:1d:ba:78:c2:8e -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.161 -z 00:26:18:1d:bb:7c -i eth0 -j ACCEPT
[1:28] -A llpwip -s 172.20.1.162 -z 00:1f:d0:c6:bc:89 -i eth0 -j ACCEPT
[3:84] -A llpwip -s 172.20.1.163 -z 00:1f:d0:c6:bf:f3 -i eth0 -j ACCEPT
[3:84] -A llpwip -s 172.20.1.164 -z 00:50:8d:9c:66:23 -i eth0 -j ACCEPT
[3:84] -A llpwip -s 172.20.1.165 -z 00:23:54:e0:b4:ba -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.167 -z 00:18:f3:a2:87:b9 -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.168 -z 00:03:0d:bf:12:b1 -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.169 -z 00:ea:01:16:ae:93 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.170 -z 00:24:1d:31:ba:9b -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.171 -z 00:1d:0f:16:58:d2 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.20 -z 00:1f:29:b5:b3:8f -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.21 -z 00:0c:f1:da:03:8c -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.22 -z 00:1f:f3:8b:f9:45 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.23 -z 00:03:0d:bf:12:09 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.24 -z 00:03:0d:c1:89:38 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.25 -z 00:05:5d:6a:96:68 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.26 -z 00:03:0d:af:0c:fa -i eth0 -j ACCEPT
[1:28] -A llpwip -s 172.20.1.27 -z 00:03:0d:bf:b3:64 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.35 -z 00:26:18:5c:af:32 -i eth0 -j ACCEPT
[3:84] -A llpwip -s 172.20.1.40 -z 00:05:5d:6a:78:6c -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.41 -z 00:0b:2f:06:61:d7 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.47 -z 00:0c:29:2e:7c:ea -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.50 -z 00:e0:4c:f8:78:43 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.51 -z 00:17:c4:34:5d:0f -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.53 -z 00:03:0d:be:c0:15 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.55 -z 00:0d:61:9a:53:09 -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.56 -z 00:e0:0c:77:24:c7 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.57 -z 00:1e:68:e8:a0:55 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.59 -z 00:16:ea:e8:6a:2c -i eth0 -j ACCEPT
[4:112] -A llpwip -s 172.20.1.58 -z 00:40:d0:7c:d1:b1 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.60 -z 00:1f:3a:08:22:f5 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.65 -z 00:0e:35:5c:6a:dc -i eth0 -j ACCEPT
[3:84] -A llpwip -s 172.20.1.66 -z 00:03:0d:af:5f:1d -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.67 -z 00:23:54:d0:e4:2a -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.68 -z 00:05:5d:6a:5c:4b -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.70 -z 00:03:0d:bf:cd:c2 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.71 -z 00:03:0d:bf:0c:6e -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.73 -z 00:23:cd:ae:ba:90 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.75 -z 70:1a:04:22:5e:b5 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.88 -z 00:1d:ba:76:75:c4 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.89 -z 00:22:fb:bf:24:54 -i eth0 -j ACCEPT
[0:0] -A llpwip -i eth0 -z 172.20.1.0/24 -j ACCEPT(注意这里是个DROP)
COMMIT
# Completed on Thu Nov 12 13:01:14 2009本文出自 “云计算与大数据_jxwpx” 博客,请务必保留此出处http://jxwpx.blog.51cto.com/15242/226188
*filter
:IN ACCEPT [2543:71204]
:OUT ACCEPT [1619:45332]
:FORWARD ACCEPT [0:0]
:llpwip - [0:0]
[103:2884] -A IN -j llpwip
[0:0] -A FORWARD -j llpwip
[3:84] -A llpwip -s 172.20.1.104 -z 00:e0:4c:f8:c8:e1 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.160 -z 00:1d:ba:78:c2:8e -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.161 -z 00:26:18:1d:bb:7c -i eth0 -j ACCEPT
[1:28] -A llpwip -s 172.20.1.162 -z 00:1f:d0:c6:bc:89 -i eth0 -j ACCEPT
[3:84] -A llpwip -s 172.20.1.163 -z 00:1f:d0:c6:bf:f3 -i eth0 -j ACCEPT
[3:84] -A llpwip -s 172.20.1.164 -z 00:50:8d:9c:66:23 -i eth0 -j ACCEPT
[3:84] -A llpwip -s 172.20.1.165 -z 00:23:54:e0:b4:ba -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.167 -z 00:18:f3:a2:87:b9 -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.168 -z 00:03:0d:bf:12:b1 -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.169 -z 00:ea:01:16:ae:93 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.170 -z 00:24:1d:31:ba:9b -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.171 -z 00:1d:0f:16:58:d2 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.20 -z 00:1f:29:b5:b3:8f -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.21 -z 00:0c:f1:da:03:8c -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.22 -z 00:1f:f3:8b:f9:45 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.23 -z 00:03:0d:bf:12:09 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.24 -z 00:03:0d:c1:89:38 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.25 -z 00:05:5d:6a:96:68 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.26 -z 00:03:0d:af:0c:fa -i eth0 -j ACCEPT
[1:28] -A llpwip -s 172.20.1.27 -z 00:03:0d:bf:b3:64 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.35 -z 00:26:18:5c:af:32 -i eth0 -j ACCEPT
[3:84] -A llpwip -s 172.20.1.40 -z 00:05:5d:6a:78:6c -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.41 -z 00:0b:2f:06:61:d7 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.47 -z 00:0c:29:2e:7c:ea -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.50 -z 00:e0:4c:f8:78:43 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.51 -z 00:17:c4:34:5d:0f -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.53 -z 00:03:0d:be:c0:15 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.55 -z 00:0d:61:9a:53:09 -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.56 -z 00:e0:0c:77:24:c7 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.57 -z 00:1e:68:e8:a0:55 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.59 -z 00:16:ea:e8:6a:2c -i eth0 -j ACCEPT
[4:112] -A llpwip -s 172.20.1.58 -z 00:40:d0:7c:d1:b1 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.60 -z 00:1f:3a:08:22:f5 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.65 -z 00:0e:35:5c:6a:dc -i eth0 -j ACCEPT
[3:84] -A llpwip -s 172.20.1.66 -z 00:03:0d:af:5f:1d -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.67 -z 00:23:54:d0:e4:2a -i eth0 -j ACCEPT
[2:56] -A llpwip -s 172.20.1.68 -z 00:05:5d:6a:5c:4b -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.70 -z 00:03:0d:bf:cd:c2 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.71 -z 00:03:0d:bf:0c:6e -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.73 -z 00:23:cd:ae:ba:90 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.75 -z 70:1a:04:22:5e:b5 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.88 -z 00:1d:ba:76:75:c4 -i eth0 -j ACCEPT
[0:0] -A llpwip -s 172.20.1.89 -z 00:22:fb:bf:24:54 -i eth0 -j ACCEPT
[0:0] -A llpwip -i eth0 -z 172.20.1.0/24 -j ACCEPT(注意这里是个DROP)
COMMIT
# Completed on Thu Nov 12 13:01:14 2009本文出自 “云计算与大数据_jxwpx” 博客,请务必保留此出处http://jxwpx.blog.51cto.com/15242/226188
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- (十三)洞悉linux下的Netfilter&iptables:为防火墙增添功能模块【实战】
- hudson无法访问问题,linux防火墙问题
- [我的Linux技术支持生涯] httpd服务启动成功但是客户端无法连接
- Amazon-EC2 Linux实例中tomcat正常运行,但是外部浏览器如Google都无法访问
- linux密码正确,但是无法登陆
- linux 无法解析域名,但是可以ping通IP地址
- Windows7防火墙服务无法启用怎么办
- (十三)洞悉linux下的Netfilter&iptables:为防火墙增添功能模块【实战】
- Linux如何启用tcp_wrappers防火墙
- Linux中能看到文件,但是无法访问也删除不了
- (十三)洞悉linux下的Netfilter&iptables:为防火墙增添功能模块【实战】
- linux本机root账户无法登录,但是远程ssh可登录
- Linux有问必答:如何启用Open vSwitch的日志功能以便调试和排障
- linux X界面 输入密码正确,但是无法登陆系统,命令行界面可以登陆
- linux 下 tomcat启动没问题,但是局域网访问不了,那是防火墙没开,开一下即可。
- Linux 下 SElinux 以及 防火墙 的关闭 (samba NFS TFTP 等服务无法正常访问)
- linux配置免密码登录———— linux服务器可以ping通,但是访问不了--Ip地址:端口--关闭防火墙
- Linux里的防火墙(下):iptables的扩展模块——l7-filter的安装与功能实现
- 防火墙iptables实现Linux强大的NAT功能
- java.sql.SQLException:无法设置启用了自动提交功能的保存点