From: Frank Brehm <frank@brehm-online.com>
Date: Wed, 19 Jul 2017 15:58:10 +0000 (+0200)
Subject: saving uncommitted changes in /etc prior to apt run
X-Git-Url: https://git.uhu-banane.de/?a=commitdiff_plain;h=9ff0d38e5670e76ea2f59f3c151af7cefaeb125b;p=config%2Fns1%2Fetc.git

saving uncommitted changes in /etc prior to apt run
---

diff --git a/iptables/rules.v4 b/iptables/rules.v4
index 14ab375..7500749 100644
--- a/iptables/rules.v4
+++ b/iptables/rules.v4
@@ -1,24 +1,9 @@
-# Generated by iptables-save v1.6.0 on Tue Jul 18 14:08:07 2017
+# Generated by iptables-save v1.6.0 on Wed Jul 19 08:54:03 2017
 *filter
 :INPUT ACCEPT [0:0]
 :FORWARD ACCEPT [0:0]
-:OUTPUT ACCEPT [31:7988]
+:OUTPUT ACCEPT [68:14205]
 :f2b-apache - [0:0]
-:f2b-apache-modsecurity - [0:0]
-:f2b-apache-nohome - [0:0]
-:f2b-apache-noscript - [0:0]
-:f2b-apache-overflows - [0:0]
-:f2b-postfix - [0:0]
-:f2b-ssh - [0:0]
-:f2b-sshd - [0:0]
--A INPUT -p tcp -m multiport --dports 22 -j f2b-ssh
--A INPUT -p tcp -m multiport --dports 25,465,587 -j f2b-postfix
--A INPUT -p tcp -m multiport --dports 0:65535 -j f2b-sshd
--A INPUT -p tcp -m multiport --dports 80,443 -j f2b-apache-nohome
--A INPUT -p tcp -m multiport --dports 80,443 -j f2b-apache-modsecurity
--A INPUT -p tcp -m multiport --dports 80,443 -j f2b-apache-overflows
--A INPUT -p tcp -m multiport --dports 80,443 -j f2b-apache-noscript
--A INPUT -p tcp -m multiport --dports 80,443 -j f2b-apache
 -A INPUT -p tcp -m multiport --dports 80,443 -j f2b-apache
 -A INPUT -s 220.192.0.0/12 -p tcp -m multiport --dports 22 -j REJECT --reject-with icmp-port-unreachable
 -A INPUT -s 222.184.0.0/13 -p tcp -m multiport --dports 22 -j REJECT --reject-with icmp-port-unreachable
@@ -35,14 +20,5 @@
 -A INPUT -p tcp -m multiport --dports 445 -j REJECT --reject-with icmp-port-unreachable
 -A INPUT -j NFLOG --nflog-prefix  "INPUT Reject " --nflog-threshold 1
 -A INPUT -j REJECT --reject-with icmp-port-unreachable
--A f2b-apache -j RETURN
--A f2b-apache-modsecurity -j RETURN
--A f2b-apache-nohome -j RETURN
--A f2b-apache-noscript -j RETURN
--A f2b-apache-overflows -j RETURN
--A f2b-postfix -j RETURN
--A f2b-ssh -s 116.31.116.27/32 -j REJECT --reject-with icmp-port-unreachable
--A f2b-ssh -j RETURN
--A f2b-sshd -j RETURN
 COMMIT
-# Completed on Tue Jul 18 14:08:07 2017
+# Completed on Wed Jul 19 08:54:03 2017
diff --git a/iptables/rules.v6 b/iptables/rules.v6
index 7595228..8093672 100644
--- a/iptables/rules.v6
+++ b/iptables/rules.v6
@@ -1,8 +1,8 @@
-# Generated by ip6tables-save v1.6.0 on Tue Jul 18 14:08:07 2017
+# Generated by ip6tables-save v1.6.0 on Wed Jul 19 08:54:03 2017
 *filter
 :INPUT ACCEPT [0:0]
 :FORWARD ACCEPT [0:0]
-:OUTPUT ACCEPT [147:65851]
+:OUTPUT ACCEPT [21768:7981252]
 -A INPUT -m conntrack --ctstate ESTABLISHED -j ACCEPT
 -A INPUT -m conntrack --ctstate RELATED -j ACCEPT
 -A INPUT -p ipv6-icmp -j ACCEPT
@@ -25,4 +25,4 @@
 -A FORWARD -j NFLOG --nflog-prefix  "IPv6 FORWARD Reject " --nflog-threshold 1
 -A FORWARD -j REJECT --reject-with icmp6-port-unreachable
 COMMIT
-# Completed on Tue Jul 18 14:08:07 2017
+# Completed on Wed Jul 19 08:54:03 2017