Mailinglist Archive: opensuse-security (375 mails)

< Previous Next >
Fwd: SuSE-Firewall2 and M$ Dungeon Siege
  • From: Christian Weickhmann <bowfingermail@xxxxxxx>
  • Date: Mon, 30 Sep 2002 15:17:02 +0200
  • Message-id: <200209301517.02603.bowfingermail@xxxxxxx>
Hello folks!

It sounds ugly but: I friend of mine wants to play Dungeon Siege on the
internet via a SuSE-Firewall2-protected (cool word, aiii?) router.

Somehow the game needs more than just a connection. It wants
M$-Crap to work correctly.
All ports necessary described in the so called "Knowledge Base"
are _open_. Still nothing.

I've got some logs and FW-rules for you. If someone could have a
look over it, I'd be thankful.

CU
Christian

Append 1: Firewall Log 1 - 192.168.0.4 tries to play DS via 192.168.0.1
(router)
Append 2: Firewall rules (regeln.txt)
Append 3: Firewall config (firewall2.rc.config)

Thank you so much!

--
"Life is too important to take seriously."
-- Corky Siegel
Sep 21 21:22:00 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=48 TOS=0x10 PREC=0x00 TTL=128 ID=56146 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=64240 RES=0x00 SYN URGP=0 OPT (020405B401010402)
Sep 21 21:24:26 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=160 TOS=0x00 PREC=0x00 TTL=128 ID=56604 PROTO=UDP SPT=1128 DPT=1900 LEN=140
Sep 21 21:24:26 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=161 TOS=0x00 PREC=0x00 TTL=128 ID=56605 PROTO=UDP SPT=1128 DPT=1900 LEN=141
Sep 21 21:24:39 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x10 PREC=0x00 TTL=128 ID=56609 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63480 RES=0x00 ACK URGP=0
Sep 21 21:24:44 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=160 TOS=0x00 PREC=0x00 TTL=128 ID=56610 PROTO=UDP SPT=1128 DPT=1900 LEN=140
Sep 21 21:24:44 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=161 TOS=0x00 PREC=0x00 TTL=128 ID=56611 PROTO=UDP SPT=1128 DPT=1900 LEN=141
Sep 21 21:24:44 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=160 TOS=0x00 PREC=0x00 TTL=128 ID=56612 PROTO=UDP SPT=1128 DPT=1900 LEN=140
Sep 21 21:24:44 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=161 TOS=0x00 PREC=0x00 TTL=128 ID=56613 PROTO=UDP SPT=1128 DPT=1900 LEN=141
Sep 21 21:24:45 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=37 TOS=0x00 PREC=0x00 TTL=128 ID=56614 PROTO=UDP SPT=1126 DPT=2234 LEN=17
Sep 21 21:24:45 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=37 TOS=0x00 PREC=0x00 TTL=128 ID=56615 PROTO=UDP SPT=1126 DPT=2234 LEN=17
Sep 21 21:24:45 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=194.25.2.129 LEN=67 TOS=0x10 PREC=0x00 TTL=127 ID=56619 PROTO=UDP SPT=1130 DPT=53 LEN=47
Sep 21 21:24:45 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=194.25.2.129 DST=192.168.0.4 LEN=131 TOS=0x00 PREC=0x00 TTL=59 ID=23516 PROTO=UDP SPT=53 DPT=1130 LEN=111
Sep 21 21:24:45 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=194.25.2.129 LEN=67 TOS=0x10 PREC=0x00 TTL=127 ID=56620 PROTO=UDP SPT=1131 DPT=53 LEN=47
Sep 21 21:24:45 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=194.25.2.129 DST=192.168.0.4 LEN=131 TOS=0x00 PREC=0x00 TTL=249 ID=39907 DF PROTO=UDP SPT=53 DPT=1131 LEN=111
Sep 21 21:24:45 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=44 TOS=0x00 PREC=0x00 TTL=127 ID=56621 PROTO=UDP SPT=1129 DPT=2300 LEN=24
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=44 TOS=0x00 PREC=0x00 TTL=127 ID=56629 PROTO=UDP SPT=1129 DPT=2300 LEN=24
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=56630 DF PROTO=TCP SPT=1133 DPT=3128 WINDOW=64240 RES=0x00 SYN URGP=0 OPT (020405B401010402)
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x00 PREC=0x00 TTL=128 ID=56631 DF PROTO=TCP SPT=1133 DPT=3128 WINDOW=64240 RES=0x00 ACK URGP=0
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=155 TOS=0x00 PREC=0x00 TTL=128 ID=56632 DF PROTO=TCP SPT=1133 DPT=3128 WINDOW=64240 RES=0x00 ACK PSH URGP=0
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=44 TOS=0x00 PREC=0x00 TTL=51 ID=45553 PROTO=UDP SPT=2300 DPT=1129 LEN=24
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=44 TOS=0x00 PREC=0x00 TTL=127 ID=56633 PROTO=UDP SPT=1129 DPT=2300 LEN=24
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=116 TOS=0x00 PREC=0x00 TTL=127 ID=56634 PROTO=UDP SPT=1129 DPT=2300 LEN=96
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=32 TOS=0x00 PREC=0x00 TTL=127 ID=56635 PROTO=UDP SPT=1129 DPT=2300 LEN=12
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=44 TOS=0x00 PREC=0x00 TTL=51 ID=45564 PROTO=UDP SPT=2300 DPT=1129 LEN=24
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=44 TOS=0x00 PREC=0x00 TTL=127 ID=56637 PROTO=UDP SPT=1129 DPT=2300 LEN=24
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=44 TOS=0x00 PREC=0x00 TTL=51 ID=45565 PROTO=UDP SPT=2300 DPT=1129 LEN=24
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=44 TOS=0x00 PREC=0x00 TTL=127 ID=56638 PROTO=UDP SPT=1129 DPT=2300 LEN=24
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=32 TOS=0x00 PREC=0x00 TTL=51 ID=45566 PROTO=UDP SPT=2300 DPT=1129 LEN=12
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56639 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=300 TOS=0x00 PREC=0x00 TTL=51 ID=45568 PROTO=UDP SPT=2300 DPT=1129 LEN=280
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=36 TOS=0x00 PREC=0x00 TTL=127 ID=56640 PROTO=UDP SPT=1129 DPT=2300 LEN=16
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45569 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=73 TOS=0x00 PREC=0x00 TTL=127 ID=56641 PROTO=UDP SPT=1129 DPT=2300 LEN=53
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45580 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45582 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=229 TOS=0x00 PREC=0x00 TTL=51 ID=45584 PROTO=UDP SPT=2300 DPT=1129 LEN=209
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56642 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=266 TOS=0x00 PREC=0x00 TTL=127 ID=56643 PROTO=UDP SPT=1129 DPT=2300 LEN=246
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x00 PREC=0x00 TTL=128 ID=56644 DF PROTO=TCP SPT=1133 DPT=3128 WINDOW=64240 RES=0x00 ACK URGP=0
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x00 PREC=0x00 TTL=128 ID=56645 DF PROTO=TCP SPT=1133 DPT=3128 WINDOW=64240 RES=0x00 ACK URGP=0
Sep 21 21:24:46 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x00 PREC=0x00 TTL=128 ID=56652 DF PROTO=TCP SPT=1133 DPT=3128 WINDOW=64240 RES=0x00 ACK FIN URGP=0
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45623 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=86 TOS=0x00 PREC=0x00 TTL=51 ID=45624 PROTO=UDP SPT=2300 DPT=1129 LEN=66
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56657 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=63 TOS=0x00 PREC=0x00 TTL=127 ID=56658 PROTO=UDP SPT=1129 DPT=2300 LEN=43
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=63 TOS=0x00 PREC=0x00 TTL=127 ID=56659 PROTO=UDP SPT=1129 DPT=2300 LEN=43
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=194.25.2.129 LEN=65 TOS=0x10 PREC=0x00 TTL=127 ID=56660 PROTO=UDP SPT=1134 DPT=53 LEN=45
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=194.25.2.129 DST=192.168.0.4 LEN=129 TOS=0x00 PREC=0x00 TTL=249 ID=5195 DF PROTO=UDP SPT=53 DPT=1134 LEN=109
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=48 TOS=0x08 PREC=0x00 TTL=128 ID=56677 DF PROTO=TCP SPT=1136 DPT=3128 WINDOW=64240 RES=0x00 SYN URGP=0 OPT (020405B401010402)
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x08 PREC=0x00 TTL=128 ID=56678 DF PROTO=TCP SPT=1136 DPT=3128 WINDOW=64240 RES=0x00 ACK URGP=0
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=139 TOS=0x08 PREC=0x00 TTL=128 ID=56679 DF PROTO=TCP SPT=1136 DPT=3128 WINDOW=64240 RES=0x00 ACK PSH URGP=0
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x08 PREC=0x00 TTL=128 ID=56680 DF PROTO=TCP SPT=1136 DPT=3128 WINDOW=63035 RES=0x00 ACK URGP=0
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x08 PREC=0x00 TTL=128 ID=56685 DF PROTO=TCP SPT=1136 DPT=3128 WINDOW=63035 RES=0x00 ACK FIN URGP=0
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=194.25.2.129 LEN=65 TOS=0x10 PREC=0x00 TTL=127 ID=56686 PROTO=UDP SPT=1137 DPT=53 LEN=45
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45639 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=63 TOS=0x00 PREC=0x00 TTL=127 ID=56687 PROTO=UDP SPT=1129 DPT=2300 LEN=43
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45641 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=63 TOS=0x00 PREC=0x00 TTL=127 ID=56688 PROTO=UDP SPT=1129 DPT=2300 LEN=43
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=199 TOS=0x00 PREC=0x00 TTL=51 ID=45644 PROTO=UDP SPT=2300 DPT=1129 LEN=179
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56689 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=194.25.2.129 DST=192.168.0.4 LEN=129 TOS=0x00 PREC=0x00 TTL=249 ID=36447 DF PROTO=UDP SPT=53 DPT=1137 LEN=109
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=199 TOS=0x00 PREC=0x00 TTL=51 ID=45650 PROTO=UDP SPT=2300 DPT=1129 LEN=179
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56705 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=48 TOS=0x08 PREC=0x00 TTL=128 ID=56706 DF PROTO=TCP SPT=1139 DPT=3128 WINDOW=64240 RES=0x00 SYN URGP=0 OPT (020405B401010402)
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x08 PREC=0x00 TTL=128 ID=56707 DF PROTO=TCP SPT=1139 DPT=3128 WINDOW=64240 RES=0x00 ACK URGP=0
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=214 TOS=0x08 PREC=0x00 TTL=128 ID=56708 DF PROTO=TCP SPT=1139 DPT=3128 WINDOW=64240 RES=0x00 ACK PSH URGP=0
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x08 PREC=0x00 TTL=128 ID=56709 DF PROTO=TCP SPT=1139 DPT=3128 WINDOW=63023 RES=0x00 ACK URGP=0
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x08 PREC=0x00 TTL=128 ID=56712 DF PROTO=TCP SPT=1139 DPT=3128 WINDOW=63023 RES=0x00 ACK FIN URGP=0
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45659 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=63 TOS=0x00 PREC=0x00 TTL=127 ID=56717 PROTO=UDP SPT=1129 DPT=2300 LEN=43
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45661 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=63 TOS=0x00 PREC=0x00 TTL=127 ID=56718 PROTO=UDP SPT=1129 DPT=2300 LEN=43
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=199 TOS=0x00 PREC=0x00 TTL=51 ID=45665 PROTO=UDP SPT=2300 DPT=1129 LEN=179
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56719 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=199 TOS=0x00 PREC=0x00 TTL=51 ID=45668 PROTO=UDP SPT=2300 DPT=1129 LEN=179
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56720 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45677 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=63 TOS=0x00 PREC=0x00 TTL=127 ID=56721 PROTO=UDP SPT=1129 DPT=2300 LEN=43
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45679 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=63 TOS=0x00 PREC=0x00 TTL=127 ID=56722 PROTO=UDP SPT=1129 DPT=2300 LEN=43
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=199 TOS=0x00 PREC=0x00 TTL=51 ID=45684 PROTO=UDP SPT=2300 DPT=1129 LEN=179
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56723 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=199 TOS=0x00 PREC=0x00 TTL=51 ID=45687 PROTO=UDP SPT=2300 DPT=1129 LEN=179
Sep 21 21:24:47 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56724 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45700 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=64 TOS=0x00 PREC=0x00 TTL=127 ID=56725 PROTO=UDP SPT=1129 DPT=2300 LEN=44
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45702 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=63 TOS=0x00 PREC=0x00 TTL=127 ID=56726 PROTO=UDP SPT=1129 DPT=2300 LEN=43
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=199 TOS=0x00 PREC=0x00 TTL=51 ID=45705 PROTO=UDP SPT=2300 DPT=1129 LEN=179
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56727 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=199 TOS=0x00 PREC=0x00 TTL=51 ID=45707 PROTO=UDP SPT=2300 DPT=1129 LEN=179
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56728 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45726 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=86 TOS=0x00 PREC=0x00 TTL=127 ID=56729 PROTO=UDP SPT=1129 DPT=2300 LEN=66
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45728 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=245 TOS=0x00 PREC=0x00 TTL=51 ID=45737 PROTO=UDP SPT=2300 DPT=1129 LEN=225
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56730 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=199 TOS=0x00 PREC=0x00 TTL=51 ID=45744 PROTO=UDP SPT=2300 DPT=1129 LEN=179
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56731 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45752 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=1468 TOS=0x00 PREC=0x00 TTL=51 ID=45759 PROTO=UDP SPT=2300 DPT=1129 LEN=1448
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56732 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=1468 TOS=0x00 PREC=0x00 TTL=51 ID=45761 PROTO=UDP SPT=2300 DPT=1129 LEN=1448
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56733 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=1332 TOS=0x00 PREC=0x00 TTL=51 ID=45788 PROTO=UDP SPT=2300 DPT=1129 LEN=1312
Sep 21 21:24:48 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56734 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:52 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=32 TOS=0x00 PREC=0x00 TTL=51 ID=46012 PROTO=UDP SPT=2300 DPT=1129 LEN=12
Sep 21 21:24:52 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56735 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:58 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=32 TOS=0x00 PREC=0x00 TTL=51 ID=46337 PROTO=UDP SPT=2300 DPT=1129 LEN=12
Sep 21 21:24:58 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56736 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:24:59 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=64.252.142.209 LEN=49 TOS=0x00 PREC=0x00 TTL=127 ID=56737 PROTO=UDP SPT=2302 DPT=6073 LEN=29
Sep 21 21:25:00 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=64.252.142.209 LEN=49 TOS=0x00 PREC=0x00 TTL=127 ID=56738 PROTO=UDP SPT=2302 DPT=6073 LEN=29
Sep 21 21:25:02 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=64.252.142.209 LEN=49 TOS=0x00 PREC=0x00 TTL=127 ID=56739 PROTO=UDP SPT=2302 DPT=6073 LEN=29
Sep 21 21:25:03 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=64.252.142.209 LEN=49 TOS=0x00 PREC=0x00 TTL=127 ID=56740 PROTO=UDP SPT=2302 DPT=6073 LEN=29
Sep 21 21:25:04 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=32 TOS=0x00 PREC=0x00 TTL=51 ID=46720 PROTO=UDP SPT=2300 DPT=1129 LEN=12
Sep 21 21:25:04 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56741 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:25:05 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=64.252.142.209 LEN=49 TOS=0x00 PREC=0x00 TTL=127 ID=56742 PROTO=UDP SPT=2302 DPT=6073 LEN=29
Sep 21 21:25:06 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=64.252.142.209 LEN=49 TOS=0x00 PREC=0x00 TTL=127 ID=56743 PROTO=UDP SPT=2302 DPT=6073 LEN=29
Sep 21 21:25:08 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=64.252.142.209 LEN=49 TOS=0x00 PREC=0x00 TTL=127 ID=56744 PROTO=UDP SPT=2302 DPT=6073 LEN=29
Sep 21 21:25:09 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=160 TOS=0x00 PREC=0x00 TTL=128 ID=56745 PROTO=UDP SPT=1128 DPT=1900 LEN=140
Sep 21 21:25:09 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=161 TOS=0x00 PREC=0x00 TTL=128 ID=56746 PROTO=UDP SPT=1128 DPT=1900 LEN=141
Sep 21 21:25:09 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=64.252.142.209 LEN=49 TOS=0x00 PREC=0x00 TTL=127 ID=56747 PROTO=UDP SPT=2302 DPT=6073 LEN=29
Sep 21 21:25:10 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=160 TOS=0x00 PREC=0x00 TTL=128 ID=56748 PROTO=UDP SPT=1128 DPT=1900 LEN=140
Sep 21 21:25:10 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=161 TOS=0x00 PREC=0x00 TTL=128 ID=56749 PROTO=UDP SPT=1128 DPT=1900 LEN=141
Sep 21 21:25:10 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=32 TOS=0x00 PREC=0x00 TTL=51 ID=47240 PROTO=UDP SPT=2300 DPT=1129 LEN=12
Sep 21 21:25:10 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56750 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:25:10 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=37 TOS=0x00 PREC=0x00 TTL=128 ID=56751 PROTO=UDP SPT=1126 DPT=2234 LEN=17
Sep 21 21:25:10 mtprx01 kernel: SuSE-FW-DROP-DEFAULT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=37 TOS=0x00 PREC=0x00 TTL=128 ID=56752 PROTO=UDP SPT=1126 DPT=2234 LEN=17
Sep 21 21:25:11 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=64.252.142.209 LEN=49 TOS=0x00 PREC=0x00 TTL=127 ID=56753 PROTO=UDP SPT=2302 DPT=6073 LEN=29
Sep 21 21:25:12 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=64.252.142.209 LEN=49 TOS=0x00 PREC=0x00 TTL=127 ID=56754 PROTO=UDP SPT=2302 DPT=6073 LEN=29
Sep 21 21:25:14 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=64.252.142.209 LEN=49 TOS=0x00 PREC=0x00 TTL=127 ID=56755 PROTO=UDP SPT=2302 DPT=6073 LEN=29
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=32 TOS=0x00 PREC=0x00 TTL=127 ID=56756 PROTO=UDP SPT=1129 DPT=2300 LEN=12
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=47625 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=32 TOS=0x00 PREC=0x00 TTL=51 ID=47626 PROTO=UDP SPT=2300 DPT=1129 LEN=12
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56757 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56758 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56759 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=56760 PROTO=UDP SPT=1129 DPT=2300 LEN=20
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=47627 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-FORWARD-RELATED IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=56 TOS=0x00 PREC=0x00 TTL=127 ID=56761 PROTO=ICMP TYPE=3 CODE=3 [SRC=207.46.204.134 DST=217.81.164.7 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=47627 PROTO=UDP SPT=2300 DPT=1129 LEN=20 ]
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=47628 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-FORWARD-RELATED IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=56 TOS=0x00 PREC=0x00 TTL=127 ID=56762 PROTO=ICMP TYPE=3 CODE=3 [SRC=207.46.204.134 DST=217.81.164.7 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=47628 PROTO=UDP SPT=2300 DPT=1129 LEN=20 ]
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=ppp0 OUT=eth0 SRC=207.46.204.134 DST=192.168.0.4 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=47629 PROTO=UDP SPT=2300 DPT=1129 LEN=20
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-FORWARD-RELATED IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=207.46.204.134 LEN=56 TOS=0x00 PREC=0x00 TTL=127 ID=56763 PROTO=ICMP TYPE=3 CODE=3 [SRC=207.46.204.134 DST=217.81.164.7 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=47629 PROTO=UDP SPT=2300 DPT=1129 LEN=20 ]
Sep 21 21:25:15 mtprx01 kernel: SuSE-FW-ACCEPT-MASQ IN=eth0 OUT=ppp0 SRC=192.168.0.4 DST=64.252.142.209 LEN=49 TOS=0x00 PREC=0x00 TTL=127 ID=56764 PROTO=UDP SPT=2302 DPT=6073 LEN=29
Sep 21 21:25:23 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56765 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63480 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:23 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x10 PREC=0x00 TTL=128 ID=56766 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63416 RES=0x00 ACK URGP=0
Sep 21 21:25:24 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56767 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63416 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:24 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x10 PREC=0x00 TTL=128 ID=56768 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63376 RES=0x00 ACK URGP=0
Sep 21 21:25:24 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56769 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63376 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:24 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56770 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63336 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:24 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56771 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63296 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:24 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56772 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63256 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:24 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x10 PREC=0x00 TTL=128 ID=56773 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63216 RES=0x00 ACK URGP=0
Sep 21 21:25:25 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56774 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63216 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:25 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x10 PREC=0x00 TTL=128 ID=56775 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63176 RES=0x00 ACK URGP=0
Sep 21 21:25:25 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56776 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63176 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:25 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x10 PREC=0x00 TTL=128 ID=56777 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63136 RES=0x00 ACK URGP=0
Sep 21 21:25:25 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56778 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63136 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:25 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x10 PREC=0x00 TTL=128 ID=56779 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63096 RES=0x00 ACK URGP=0
Sep 21 21:25:26 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56780 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63096 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:26 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x10 PREC=0x00 TTL=128 ID=56781 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63056 RES=0x00 ACK URGP=0
Sep 21 21:25:26 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56782 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63056 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:26 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56783 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=63016 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:26 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x10 PREC=0x00 TTL=128 ID=56784 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=62976 RES=0x00 ACK URGP=0
Sep 21 21:25:26 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=80 TOS=0x10 PREC=0x00 TTL=128 ID=56785 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=62976 RES=0x00 ACK PSH URGP=0
Sep 21 21:25:26 mtprx01 kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:e0:7d:78:ec:8e:00:60:08:0d:ac:90:08:00 SRC=192.168.0.4 DST=192.168.0.1 LEN=40 TOS=0x10 PREC=0x00 TTL=128 ID=56786 DF PROTO=TCP SPT=1124 DPT=22 WINDOW=62872 RES=0x00 ACK URGP=0
Chain INPUT (policy DROP)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
LOG all -- 127.0.0.0/8 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOFING '
LOG all -- 0.0.0.0/0 127.0.0.0/8 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOFING '
DROP all -- 127.0.0.0/8 0.0.0.0/0
DROP all -- 0.0.0.0/0 127.0.0.0/8
LOG all -- 192.168.0.1 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOFING '
DROP all -- 192.168.0.1 0.0.0.0/0
LOG all -- 217.81.164.7 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOFING '
DROP all -- 217.81.164.7 0.0.0.0/0
input_ext all -- 0.0.0.0/0 217.81.164.7
input_int all -- 0.0.0.0/0 192.168.0.1
DROP all -- 0.0.0.0/0 192.168.0.255
DROP all -- 0.0.0.0/0 255.255.255.255
LOG all -- 0.0.0.0/0 217.81.164.7 LOG flags 6 level 4 prefix `SuSE-FW-NO_ACCESS_INT->FWEXT '
DROP all -- 0.0.0.0/0 217.81.164.7
LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-UNALLOWED-TARGET '
DROP all -- 0.0.0.0/0 0.0.0.0/0

Chain FORWARD (policy DROP)
target prot opt source destination
TCPMSS tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x02 TCPMSS clamp to PMTU
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
forward_ext all -- 0.0.0.0/0 0.0.0.0/0
forward_int all -- 0.0.0.0/0 0.0.0.0/0
LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-UNALLOWED-ROUTING '
DROP all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-FORWARD-ERROR '

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 11 LOG flags 6 level 4 prefix `SuSE-FW-TRACEROUTE-ATTEMPT '
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 11
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3 code 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3 code 4
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3 code 9
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3 code 10
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3 code 13
DROP icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-OUTPUT-ERROR '

Chain forward_dmz (0 references)
target prot opt source destination
LOG all -- 217.81.164.7 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOF '
DROP all -- 217.81.164.7 0.0.0.0/0
LOG all -- 192.168.0.0/24 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOF '
DROP all -- 192.168.0.0/24 0.0.0.0/0
LOG all -- 0.0.0.0/0 192.168.0.1 LOG flags 6 level 4 prefix `SuSE-FW-DROP-CIRCUMVENTION '
DROP all -- 0.0.0.0/0 192.168.0.1
LOG all -- 0.0.0.0/0 217.81.164.7 LOG flags 6 level 4 prefix `SuSE-FW-DROP-CIRCUMVENTION '
DROP all -- 0.0.0.0/0 217.81.164.7
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED icmp type 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 0
ACCEPT all -- 192.168.0.0/24 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
ACCEPT all -- 0.0.0.0/0 192.168.0.0/24 state RELATED,ESTABLISHED
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 5 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 13 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 17 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG udp -- 0.0.0.0/0 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG all -- 0.0.0.0/0 0.0.0.0/0 state INVALID LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT-INVALID '
DROP all -- 0.0.0.0/0 0.0.0.0/0

Chain forward_ext (1 references)
target prot opt source destination
LOG all -- 192.168.0.0/24 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOF '
DROP all -- 192.168.0.0/24 0.0.0.0/0
LOG all -- 192.168.0.0/24 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOF '
DROP all -- 192.168.0.0/24 0.0.0.0/0
LOG all -- 0.0.0.0/0 192.168.0.1 LOG flags 6 level 4 prefix `SuSE-FW-DROP-CIRCUMVENTION '
DROP all -- 0.0.0.0/0 192.168.0.1
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED icmp type 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 0
ACCEPT all -- 192.168.0.0/24 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
ACCEPT all -- 0.0.0.0/0 192.168.0.0/24 state RELATED,ESTABLISHED
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 5 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 13 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 17 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG udp -- 0.0.0.0/0 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG all -- 0.0.0.0/0 0.0.0.0/0 state INVALID LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT-INVALID '
DROP all -- 0.0.0.0/0 0.0.0.0/0

Chain forward_int (1 references)
target prot opt source destination
LOG all -- 217.81.164.7 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOF '
DROP all -- 217.81.164.7 0.0.0.0/0
LOG all -- 0.0.0.0/0 217.81.164.7 LOG flags 6 level 4 prefix `SuSE-FW-DROP-CIRCUMVENTION '
DROP all -- 0.0.0.0/0 217.81.164.7
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED icmp type 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 0
ACCEPT all -- 192.168.0.0/24 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
ACCEPT all -- 0.0.0.0/0 192.168.0.0/24 state RELATED,ESTABLISHED
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 5 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 13 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 17 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG udp -- 0.0.0.0/0 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG all -- 0.0.0.0/0 0.0.0.0/0 state INVALID LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT-INVALID '
DROP all -- 0.0.0.0/0 0.0.0.0/0

Chain input_dmz (0 references)
target prot opt source destination
LOG all -- 217.81.164.7 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOF '
DROP all -- 217.81.164.7 0.0.0.0/0
LOG all -- 192.168.0.0/24 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOF '
DROP all -- 192.168.0.0/24 0.0.0.0/0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 11
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 12
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 14
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 18
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 5 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 13 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 17 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 2 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
DROP icmp -- 0.0.0.0/0 0.0.0.0/0
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:113 flags:0x16/0x02 reject-with tcp-reset
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP '
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 flags:0x16/0x02
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:111 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP '
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:111 flags:0x16/0x02
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP '
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6000 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP '
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6000 flags:0x16/0x02
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:20 dpts:1024:65535 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT '
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp spt:20 dpts:1024:65535
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state ESTABLISHED tcp dpts:600:65535 flags:!0x16/0x02
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state ESTABLISHED tcp dpt:20 flags:!0x16/0x02
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp dpt:1024
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp dpt:3130
ACCEPT udp -- 212.185.252.73 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp spt:53 dpts:1024:65535
ACCEPT udp -- 194.25.2.129 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp spt:53 dpts:1024:65535
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:22
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:111
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:111
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:3128
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:6000
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp dpts:1024:65535
LOG tcp -- 192.168.0.0/24 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT-REDIRECT '
ACCEPT tcp -- 192.168.0.0/24 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpt:3128
LOG tcp -- 192.168.0.0/24 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT-REDIRECT '
ACCEPT tcp -- 192.168.0.0/24 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpt:3128
LOG tcp -- 192.168.0.0/24 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT-REDIRECT '
ACCEPT tcp -- 192.168.0.0/24 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpt:3128
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 5 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 13 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 17 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG udp -- 0.0.0.0/0 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG all -- 0.0.0.0/0 0.0.0.0/0 state INVALID LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT-INVALID '
DROP all -- 0.0.0.0/0 0.0.0.0/0

Chain input_ext (1 references)
target prot opt source destination
LOG all -- 192.168.0.0/24 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOF '
DROP all -- 192.168.0.0/24 0.0.0.0/0
LOG all -- 192.168.0.0/24 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOF '
DROP all -- 192.168.0.0/24 0.0.0.0/0
LOG icmp -- 217.81.164.7 0.0.0.0/0 icmp type 4 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT-SOURCEQUENCH '
ACCEPT icmp -- 217.81.164.7 0.0.0.0/0 icmp type 4
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 11
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 12
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 14
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 18
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 5 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 13 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 17 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 2 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
DROP icmp -- 0.0.0.0/0 0.0.0.0/0
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:113 flags:0x16/0x02 reject-with tcp-reset
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP '
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 flags:0x16/0x02
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:111 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP '
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:111 flags:0x16/0x02
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP '
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6000 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP '
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6000 flags:0x16/0x02
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:20 dpts:1024:65535 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT '
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp spt:20 dpts:1024:65535
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state ESTABLISHED tcp dpts:600:65535 flags:!0x16/0x02
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state ESTABLISHED tcp dpt:20 flags:!0x16/0x02
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp dpt:1024
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp dpt:3130
ACCEPT udp -- 212.185.252.73 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp spt:53 dpts:1024:65535
ACCEPT udp -- 194.25.2.129 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp spt:53 dpts:1024:65535
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:22
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:111
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:111
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:3128
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:6000
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp dpts:1024:65535
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state ESTABLISHED udp dpts:61000:65095
LOG tcp -- 192.168.0.0/24 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT-REDIRECT '
ACCEPT tcp -- 192.168.0.0/24 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpt:3128
LOG tcp -- 192.168.0.0/24 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT-REDIRECT '
ACCEPT tcp -- 192.168.0.0/24 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpt:3128
LOG tcp -- 192.168.0.0/24 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT-REDIRECT '
ACCEPT tcp -- 192.168.0.0/24 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpt:3128
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 5 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 13 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 17 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG udp -- 0.0.0.0/0 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG all -- 0.0.0.0/0 0.0.0.0/0 state INVALID LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT-INVALID '
DROP all -- 0.0.0.0/0 0.0.0.0/0

Chain input_int (1 references)
target prot opt source destination
LOG all -- 217.81.164.7 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ANTI-SPOOF '
DROP all -- 217.81.164.7 0.0.0.0/0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 11
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 12
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 14
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED icmp type 18
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 5 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 13 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 17 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 2 LOG flags 6 level 4 prefix `SuSE-FW-DROP-ICMP-CRIT '
DROP icmp -- 0.0.0.0/0 0.0.0.0/0
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT '
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpt:22
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT '
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpt:3128
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:113 flags:0x16/0x02 reject-with tcp-reset
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:111 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP '
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:111 flags:0x16/0x02
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6000 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP '
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6000 flags:0x16/0x02
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpts:1024:65535 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT '
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED tcp dpts:1024:65535
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:20 dpts:1024:65535 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT '
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp spt:20 dpts:1024:65535
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state ESTABLISHED tcp dpts:600:65535 flags:!0x16/0x02
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state ESTABLISHED tcp dpt:20 flags:!0x16/0x02
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp dpt:1024
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp dpt:3130
ACCEPT udp -- 212.185.252.73 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp spt:53 dpts:1024:65535
ACCEPT udp -- 194.25.2.129 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp spt:53 dpts:1024:65535
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:111
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:111
DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:6000
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp dpts:1024:65535
LOG tcp -- 192.168.0.0/24 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT-REDIRECT '
ACCEPT tcp -- 192.168.0.0/24 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpt:3128
LOG tcp -- 192.168.0.0/24 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT-REDIRECT '
ACCEPT tcp -- 192.168.0.0/24 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpt:3128
LOG tcp -- 192.168.0.0/24 0.0.0.0/0 tcp dpt:3128 flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-ACCEPT-REDIRECT '
ACCEPT tcp -- 192.168.0.0/24 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpt:3128
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 5 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 13 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 17 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG udp -- 0.0.0.0/0 0.0.0.0/0 LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT '
LOG all -- 0.0.0.0/0 0.0.0.0/0 state INVALID LOG flags 6 level 4 prefix `SuSE-FW-DROP-DEFAULT-INVALID '
DROP all -- 0.0.0.0/0 0.0.0.0/0
# 2.)
# Which is the interface that points to the internet/untrusted networks?
#
FW_DEV_EXT="ppp0"

#
# 3.)
# Which is the interface that points to the internal network?
FW_DEV_INT="eth0"

#
# 4.)
# Which is the interface that points to the dmz or dialup network?
FW_DEV_DMZ=""

#
# 5.)
FW_ROUTE="yes"

#
# 6.)
FW_MASQUERADE="yes"
#
# You must also define on which interface(s) to masquerade on.
FW_MASQ_DEV="$FW_DEV_EXT"

#
# Which internal computers/networks are allowed to access the internet
# directly (not via proxys on the firewall)?
# Only these networks will be allowed access and will be masqueraded!
FW_MASQ_NETS="192.168.0.0/24"

#
# 7.)
# Do you want to protect the firewall from the internal network?
# REQUIRES: FW_DEV_INT
#
FW_PROTECT_FROM_INTERNAL="yes"

#
# 8.)
# Do you want to autoprotect all running network services on the firewall?
#
FW_AUTOPROTECT_SERVICES="yes"

#
# 9.)
# Which services ON THE FIREWALL should be accessible from either the internet
# (or other untrusted networks), the dmz or internal (trusted networks)?
# (see no.13 & 14 if you want to route traffic through the firewall) XXX
#
# Common: smtp domain
FW_SERVICES_EXT_TCP=""
# Common: domain
FW_SERVICES_EXT_UDP="" # Common: domain
# For VPN/Routing which END at the firewall!!
FW_SERVICES_EXT_IP=""
#
# Common: smtp domain
FW_SERVICES_DMZ_TCP=""
# Common: domain
FW_SERVICES_DMZ_UDP=""
# For VPN/Routing which END at the firewall!!
FW_SERVICES_DMZ_IP=""
#
# Common: ssh smtp domain
FW_SERVICES_INT_TCP="22 3128"
# Common: domain syslog
FW_SERVICES_INT_UDP=""
# For VPN/Routing which END at the firewall!!
FW_SERVICES_INT_IP=""

#
# 10.)
# Which services should be accessible from trusted hosts/nets?
#
FW_TRUSTED_NETS=""

#
# 11.)
# How is access allowed to high (unpriviliged [above 1023]) ports?
#
# Common: "ftp-data", better is "yes" to be sure that everything else works :-(
FW_ALLOW_INCOMING_HIGHPORTS_TCP="ftp-data"
# Common: "DNS" or "domain ntp", better is "yes" to be sure ...
FW_ALLOW_INCOMING_HIGHPORTS_UDP="DNS"

#
# 12.)
# Are you running some of the services below?
# They need special attention - otherwise they wonĊ½t work!
#
# Set services you are running to "yes", all others to "no", defaults to "no"
#
FW_SERVICE_AUTODETECT="yes" # Autodetect the services below when starting
#
# If you are running bind/named set to yes. Remember that you have to open
# port 53 (or "domain") as udp/tcp to allow incoming queries.
# Also FW_ALLOW_INCOMING_HIGHPORTS_UDP needs to be "yes"
FW_SERVICE_DNS="no"
#
# if you use dhclient to get an ip address you have to set this to "yes" !
FW_SERVICE_DHCLIENT="no"
#
# set to "yes" if this server is a DHCP server
FW_SERVICE_DHCPD="no"
#
# set to "yes" if this server is running squid. You still have to open the
# tcp port 3128 to allow remote access to the squid proxy service.
FW_SERVICE_SQUID="yes"
#
# set to "yes" if this server is running a samba server. You still have to open
# the tcp port 139 to allow remote access to SAMBA.
FW_SERVICE_SAMBA="no"

#
# 13.)
# Which services accessed from the internet should be allowed to the
# dmz (or internal network - if it is not masqueraded)?
# REQUIRES: FW_ROUTE
#
FW_FORWARD="" # Beware to use this!

#
# 14.)
# Which services accessed from the internet should be allowed to masqueraded
# servers (on the internal network or dmz)?
# REQUIRES: FW_ROUTE
#
FW_FORWARD_MASQ=""
# Beware to use this!

#
# 15.)
# Which accesses to services should be redirected to a localport on the
# firewall machine?
#
FW_REDIRECT="192.168.0.0/24,0/0,tcp,8080,3128
192.168.0.0/24,0/0,tcp,8021,3128 192.168.0.0/24,0/0,tcp,80,3128"

#
# 16.)
# Which logging level should be enforced?
# You can define to log packets which were accepted or denied.
# You can also the set log level, the critical stuff or everything.
# Note that logging *_ALL is only for debugging purpose ...
#
# Choice: "yes" or "no", FW_LOG_*_CRIT defaults to "yes",
# FW_LOG_*_ALL defaults to "no"
#
FW_LOG_DROP_CRIT="yes"
#
FW_LOG_DROP_ALL="no"
#
FW_LOG_ACCEPT_CRIT="yes"
#
FW_LOG_ACCEPT_ALL="no"
#
# only change/activate this if you know what you are doing!
FW_LOG="--log-level warning --log-tcp-options --log-ip-option --log-prefix SuSE-FW"

#
# 17.)
# Do you want to enable additional kernel TCP/IP security features?
# If set to yes, some obscure kernel options are set.
# (icmp_ignore_bogus_error_responses, icmp_echoreply_rate,
# icmp_destunreach_rate, icmp_paramprob_rate, icmp_timeexeed_rate,
# ip_local_port_range, log_martians, mc_forwarding, mc_forwarding,
# rp_filter, routing flush)
# Tip: Set this to "no" until you have verified that you have got a
# configuration which works for you. Then set this to "yes" and keep it
# if everything still works. (It should!) ;-)
#
# Choice: "yes" or "no", defaults to "yes"
#
FW_KERNEL_SECURITY="yes"

#
# 18.)
# Keep the routing set on, if the firewall rules are unloaded?
# REQUIRES: FW_ROUTE
#
FW_STOP_KEEP_ROUTING_STATE="no"

#
# 19.)
# Allow (or don't) ICMP echo pings on either the firewall or the dmz from
# the internet? The internet option is for allowing the DMZ and the internal
# network to ping the internet.
# REQUIRES: FW_ROUTE for FW_ALLOW_PING_DMZ and FW_ALLOW_PING_INTERNET
#
# Choice: "yes" or "no", defaults to "no" if not set
#
FW_ALLOW_PING_FW="yes"
#
FW_ALLOW_PING_DMZ="no"
#
FW_ALLOW_PING_EXT="no"

##
# END of rc.firewall
##

# #
#-------------------------------------------------------------------------#
# #
# EXPERT OPTIONS - all others please don't change these! #
# #
#-------------------------------------------------------------------------#
# #

#
# 20.)
# Allow (or don't) ICMP time-to-live-exceeded to be send from your firewall.
# This is used for traceroutes to your firewall (or traceroute like tools).
#
FW_ALLOW_FW_TRACEROUTE="yes"

#
# 21.)
# Allow ICMP sourcequench from your ISP?
#
FW_ALLOW_FW_SOURCEQUENCH="yes"

#
# 22.)
# Allow/Ignore IP Broadcasts?
#
FW_ALLOW_FW_BROADCAST="no"
#
FW_IGNORE_FW_BROADCAST="yes"

#
# 23.)
# Allow same class routing per default?
# REQUIRES: FW_ROUTE
#
# Do you want to allow routing between interfaces of the same class
# (e.g. between all internet interfaces, or all internal network interfaces)
# be default (so without the need setting up FW_FORWARD definitions)?
#
# Choice: "yes" or "no", defaults to "no"
#
FW_ALLOW_CLASS_ROUTING="no"

#
# 25.)
# Do you want to load customary rules from a file?
#
# This is really an expert option. NO HELP WILL BE GIVEN FOR THIS!
# READ THE EXAMPLE CUSTOMARY FILE AT /etc/rc.config.d/firewall2-custom.rc.config
#
#FW_CUSTOMRULES="/etc/rc.config.d/firewall2-custom.rc.config"
< Previous Next >
This Thread
  • No further messages