# Generated by iptables-save v1.3.3 on Thu Oct 11 16:56:21 2007
*filter
:INPUT ACCEPT [889:619378]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [966:627846]
:P2P_filter - [0:0]
:TCP_filter - [0:0]
:UDP_filter - [0:0]
-A INPUT -i lo -j ACCEPT 
-A FORWARD -i eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A FORWARD -i eth0 -j DROP 
-A FORWARD -d 129.21.0.0/255.255.0.0 -o eth0 -j ACCEPT 
-A FORWARD -d 193.198.51.0/255.255.255.0 -o eth0 -j ACCEPT 
-A FORWARD -p icmp -j ACCEPT 
-A FORWARD -o eth0 -p tcp -m tcp -j TCP_filter 
-A FORWARD -o eth0 -p udp -m udp -j UDP_filter 
-A FORWARD -o eth0 -j REJECT --reject-with icmp-port-unreachable 
-A P2P_filter -j RETURN 
-A TCP_filter -p tcp -m tcp --dport 20 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 21 -j ACCEPT 
-A TCP_filter -d 193.198.51.0/255.255.255.0 -p tcp -m tcp --dport 22 -j ACCEPT 
-A TCP_filter -d 193.198.51.0/255.255.255.0 -p tcp -m tcp --dport 25 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 53 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 67 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 68 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 80 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 109 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 110 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 115 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 119 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 123 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 143 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 443 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 563 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 993 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 995 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 1755 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 3389 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 8001 -j ACCEPT 
-A TCP_filter -p tcp -m tcp --dport 8080 -j ACCEPT 
-A TCP_filter -j REJECT --reject-with icmp-port-unreachable 
-A UDP_filter -p udp -m udp --dport 67 -j ACCEPT 
-A UDP_filter -p udp -m udp --dport 68 -j ACCEPT 
-A UDP_filter -p udp -m udp --dport 53 -j ACCEPT 
-A UDP_filter -p udp -m udp --dport 123 -j ACCEPT 
-A UDP_filter -p udp -m udp --dport 443 -j ACCEPT 
-A UDP_filter -p udp -m udp --dport 500 -j ACCEPT 
-A UDP_filter -p udp -m udp --dport 554 -j ACCEPT 
-A UDP_filter -p udp -m udp --dport 631 -j ACCEPT 
-A UDP_filter -p udp -m udp --dport 1755 -j ACCEPT 
-A UDP_filter -p udp -m udp --dport 10000 -j ACCEPT 
-A UDP_filter -j REJECT --reject-with icmp-port-unreachable 
COMMIT
# Completed on Thu Oct 11 16:56:21 2007
# Generated by iptables-save v1.3.3 on Thu Oct 11 16:56:21 2007
*mangle
:PREROUTING ACCEPT [1006:697377]
:INPUT ACCEPT [891:619526]
:FORWARD ACCEPT [115:77851]
:OUTPUT ACCEPT [966:627846]
:POSTROUTING ACCEPT [1081:705697]
-A PREROUTING -p tcp -m tcp --tcp-flags SYN,RST,ACK SYN -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --tcp-flags SYN,RST,ACK SYN -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 107 -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --dport 107 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 22 -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --dport 22 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 23 -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --dport 23 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 53 -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --dport 53 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 992 -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --dport 992 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 994 -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --dport 994 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 107 -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --sport 107 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 22 -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --sport 22 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 23 -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --sport 23 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 53 -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --sport 53 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 992 -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --sport 992 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 994 -j MARK --set-mark 0x1 
-A PREROUTING -p tcp -m tcp --sport 994 -j RETURN 
-A PREROUTING -p udp -m udp --dport 107 -j MARK --set-mark 0x1 
-A PREROUTING -p udp -m udp --dport 107 -j RETURN 
-A PREROUTING -p udp -m udp --dport 123 -j MARK --set-mark 0x1 
-A PREROUTING -p udp -m udp --dport 123 -j RETURN 
-A PREROUTING -p udp -m udp --dport 53 -j MARK --set-mark 0x1 
-A PREROUTING -p udp -m udp --dport 53 -j RETURN 
-A PREROUTING -p udp -m udp --dport 7777:7778 -j MARK --set-mark 0x1 
-A PREROUTING -p udp -m udp --dport 7777:7778 -j RETURN 
-A PREROUTING -p udp -m udp --dport 992 -j MARK --set-mark 0x1 
-A PREROUTING -p udp -m udp --dport 992 -j RETURN 
-A PREROUTING -p udp -m udp --dport 994 -j MARK --set-mark 0x1 
-A PREROUTING -p udp -m udp --dport 994 -j RETURN 
-A PREROUTING -p udp -m udp --sport 107 -j MARK --set-mark 0x1 
-A PREROUTING -p udp -m udp --sport 107 -j RETURN 
-A PREROUTING -p udp -m udp --sport 123 -j MARK --set-mark 0x1 
-A PREROUTING -p udp -m udp --sport 123 -j RETURN 
-A PREROUTING -p udp -m udp --sport 53 -j MARK --set-mark 0x1 
-A PREROUTING -p udp -m udp --sport 53 -j RETURN 
-A PREROUTING -p udp -m udp --sport 7777:7778 -j MARK --set-mark 0x1 
-A PREROUTING -p udp -m udp --sport 7777:7778 -j RETURN 
-A PREROUTING -p udp -m udp --sport 992 -j MARK --set-mark 0x1 
-A PREROUTING -p udp -m udp --sport 992 -j RETURN 
-A PREROUTING -p udp -m udp --sport 994 -j MARK --set-mark 0x1 
-A PREROUTING -p udp -m udp --sport 994 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 80 -j MARK --set-mark 0x2 
-A PREROUTING -p tcp -m tcp --dport 80 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 80 -j MARK --set-mark 0x2 
-A PREROUTING -p tcp -m tcp --sport 80 -j RETURN 
-A PREROUTING -p udp -m udp --dport 443 -j MARK --set-mark 0x2 
-A PREROUTING -p udp -m udp --dport 443 -j RETURN 
-A PREROUTING -p udp -m udp --sport 443 -j MARK --set-mark 0x2 
-A PREROUTING -p udp -m udp --sport 443 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 110 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --dport 110 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 143 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --dport 143 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 220 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --dport 220 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 25 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --dport 25 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 465 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --dport 465 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 993 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --dport 993 -j RETURN 
-A PREROUTING -p tcp -m tcp --dport 995 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --dport 995 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 110 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --sport 110 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 143 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --sport 143 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 220 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --sport 220 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 25 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --sport 25 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 465 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --sport 465 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 993 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --sport 993 -j RETURN 
-A PREROUTING -p tcp -m tcp --sport 995 -j MARK --set-mark 0x5 
-A PREROUTING -p tcp -m tcp --sport 995 -j RETURN 
-A PREROUTING -p udp -m udp --dport 110 -j MARK --set-mark 0x5 
-A PREROUTING -p udp -m udp --dport 110 -j RETURN 
-A PREROUTING -p udp -m udp --dport 143 -j MARK --set-mark 0x5 
-A PREROUTING -p udp -m udp --dport 143 -j RETURN 
-A PREROUTING -p udp -m udp --dport 220 -j MARK --set-mark 0x5 
-A PREROUTING -p udp -m udp --dport 220 -j RETURN 
-A PREROUTING -p udp -m udp --dport 993 -j MARK --set-mark 0x5 
-A PREROUTING -p udp -m udp --dport 993 -j RETURN 
-A PREROUTING -p udp -m udp --dport 995 -j MARK --set-mark 0x5 
-A PREROUTING -p udp -m udp --dport 995 -j RETURN 
-A PREROUTING -p udp -m udp --sport 110 -j MARK --set-mark 0x5 
-A PREROUTING -p udp -m udp --sport 110 -j RETURN 
-A PREROUTING -p udp -m udp --sport 143 -j MARK --set-mark 0x5 
-A PREROUTING -p udp -m udp --sport 143 -j RETURN 
-A PREROUTING -p udp -m udp --sport 220 -j MARK --set-mark 0x5 
-A PREROUTING -p udp -m udp --sport 220 -j RETURN 
-A PREROUTING -p udp -m udp --sport 993 -j MARK --set-mark 0x5 
-A PREROUTING -p udp -m udp --sport 993 -j RETURN 
-A PREROUTING -p udp -m udp --sport 995 -j MARK --set-mark 0x5 
-A PREROUTING -p udp -m udp --sport 995 -j RETURN 
-A PREROUTING -j MARK --set-mark 0x6 
COMMIT
# Completed on Thu Oct 11 16:56:21 2007
# Generated by iptables-save v1.3.3 on Thu Oct 11 16:56:21 2007
*nat
:PREROUTING ACCEPT [3:186]
:POSTROUTING ACCEPT [18:1080]
:OUTPUT ACCEPT [18:1080]
-A PREROUTING -i eth1 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 8083 
-A POSTROUTING -s 10.0.0.0/255.255.0.0 -o eth0 -j MASQUERADE 
COMMIT
# Completed on Thu Oct 11 16:56:21 2007