btw, are you able to ping server? On Sun, May 29, 2022 at 7:26 PM Tom Browder <tom.brow...@gmail.com> wrote:
> On Sun, May 29, 2022 at 10:33 AM IL Ka <kazakevichi...@gmail.com> wrote: > > > > > >> When running those, I'm told neither the arptablrs nor the ebtables are > registered (not installed). Should I install them? > > > > No. > > > > So, you now have legacy (classic) iptables, right? > > Yes. > > > What is the output of ``iptables -L -v -n`` > > Chain INPUT (policy ACCEPT 279 packets, 36670 bytes) > pkts bytes target prot opt in out source > destination > 1387 150K f2b-sshd tcp -- * * 0.0.0.0/0 > 0.0.0.0/0 multiport dports 22 > > Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) > pkts bytes target prot opt in out source > destination > > Chain OUTPUT (policy ACCEPT 260 packets, 35768 bytes) > pkts bytes target prot opt in out source > destination > > Chain f2b-sshd (1 references) > pkts bytes target prot opt in out source > destination > 22 1768 REJECT all -- * * 43.154.179.253 > 0.0.0.0/0 reject-with icmp-port-unreachable > 1069 126K RETURN all -- * * 0.0.0.0/0 > 0.0.0.0/0 > > > and ``iptables -S`` ? > > -P INPUT ACCEPT > -P FORWARD ACCEPT > -P OUTPUT ACCEPT > -N f2b-sshd > -A INPUT -p tcp -m multiport --dports 22 -j f2b-sshd > -A f2b-sshd -s 61.177.173.50/32 -j REJECT --reject-with > icmp-port-unreachable > -A f2b-sshd -s 61.177.173.7/32 -j REJECT --reject-with > icmp-port-unreachable > -A f2b-sshd -s 43.154.179.253/32 -j REJECT --reject-with > icmp-port-unreachable > -A f2b-sshd -j RETURN >
