iptables_save.out in shutter-0.2.0

- old
+ new
@@ -59,28 +59,10 @@
 -A Jail -j RETURN 
 -A Private -p tcp -m state --state NEW -m tcp --dport 22 -j RETURN 
 -A Private ! -d 0.0.0.255/0.0.0.255 -m limit --limit 3/min -j LOG --log-prefix "iptables: Unauthorized:" 
 -A Private -j DROP 
 -A Public -j RETURN 
--A ValidCheck -m state --state INVALID -j DropInvalid 
--A ValidCheck -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG FIN,PSH,URG -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG FIN,SYN,RST,ACK,URG -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG FIN,SYN,RST,PSH,ACK,URG -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG FIN -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags FIN,ACK FIN -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags PSH,ACK PSH -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags ACK,URG URG -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags FIN,RST FIN,RST -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG FIN,SYN -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG FIN,PSH,URG -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG FIN,SYN,PSH,URG -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags SYN,RST SYN,RST -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags FIN,SYN FIN,SYN -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG NONE -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-option 64 -j DropScan 
--A ValidCheck -p tcp -m tcp --tcp-option 128 -j DropScan 
--A ValidCheck -p tcp -m tcp ! --dport 2049 -m multiport --sports 20,21,22,23,80,110,143,443,993,995 -j DropDDOS 
--A ValidCheck -p udp -m udp ! --dport 2049 -m multiport --sports 20,21,22,23,80,110,143,443,993,995 -j DropDDOS 
+-A ValidCheck -m state --state INVALID -j DropInvalid  
 -A ValidCheck -j RETURN 
 -A fail2ban-SSH -j RETURN
 COMMIT
 # Completed on Sat Sep 29 14:34:04 2012
\ No newline at end of file