rendered paste body#!/bin/sh
#Fix for new setup
iptables --flush
# ** INPUT **
#Make sure established connections stay established
iptables -I INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
#Ping of death
iptables -A INPUT -p icmp --icmp-type echo-request -m limit --limit 1/s -j ACCEPT
#Syn-flood protection:
iptables -A INPUT -p tcp --syn -m limit --limit 1/s -j ACCEPT
#Open ports
iptables -A INPUT -p tcp --dport 80 -j ACCEPT
iptables -A INPUT -p tcp --dport 45000 -j ACCEPT
iptables -A INPUT -p tcp --dport 47000 -j ACCEPT
iptables -A INPUT -p tcp --dport 30000 -j ACCEPT
iptables -A INPUT -p tcp --dport 22 -j ACCEPT
iptables -A INPUT -p tcp --dport 21 -j ACCEPT
iptables -A INPUT -p tcp --dport 25 -j ACCEPT
iptables -A INPUT -p tcp --dport 2000 -j ACCEPT
iptables -A INPUT -p tcp --dport 113 -j ACCEPT
#Block all other stuff
iptables -A INPUT -j DROP
# ** OUTPUT **
iptables -I OUTPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -p tcp --dport 53 -j ACCEPT
iptables -A OUTPUT -p TCP --dport 6667 -d 82.211.16.16 -j ACCEPT
iptables -A OUTPUT -p TCP --dport 6667 -d 193.22.28.1 -j ACCEPT
iptables -A OUTPUT -p TCP --dport 6667 -s 88.80.193.20 -d 193.22.28.1 -j ACCEPT
iptables -A OUTPUT -p TCP --dport 53 -s 88.80.193.20 -d 66.28.0.45 -j ACCEPT
iptables -A OUTPUT -p TCP --dport 80 -s 88.80.193.20 -j ACCEPT
iptables -A OUTPUT -p icmp --icmp-type echo-request -m limit --limit 1/s -j ACCEPT
iptables -A OUTPUT -j DROP