# Generated by iptables-save v1.4.21 on Thu Nov 12 02:42:12 2020
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [372708:668255165]
:Blacklist - [0:0]
[288802:13775071] -A INPUT -m state --state RELATED,ESTABLISHED -m comment --comment "允许已经建立的连接" -j ACCEPT
[0:0] -A INPUT -i lo -m comment --comment "允许lo口所有流量通过" -j ACCEPT
[141:7672] -A INPUT -j Blacklist
[123:6436] -A INPUT -i p5p1 -p tcp -m tcp --dport 80 -j ACCEPT
[0:0] -A INPUT -s 116.237.117.229/32 -i p5p1 -j ACCEPT
[0:0] -A INPUT -s 148.70.210.25/32 -i p5p1 -j ACCEPT
[1:52] -A INPUT -s 116.237.112.200/32 -i p5p1 -j ACCEPT
[0:0] -A INPUT -s 116.237.107.61/32 -i p5p1 -j ACCEPT
[0:0] -A INPUT -s 62.234.146.40/32 -i p5p1 -j ACCEPT
[0:0] -A INPUT -s 152.136.102.176/32 -i p5p1 -j ACCEPT
[17:1184] -A INPUT -m comment --comment "拒绝所有没有显式开启的" -j REJECT --reject-with icmp-host-prohibited
[0:0] -A FORWARD -m comment --comment "拒绝所有没有显式开启的转发" -j REJECT --reject-with icmp-host-prohibited
[0:0] -A FORWARD -j REJECT --reject-with icmp-host-prohibited
COMMIT
# Completed on Thu Nov 12 02:42:12 2020
Comments | NOTHING