1 INPUT ACCEPT [0:0]
2 :FORWARD ACCEPT [0:0]
3 :OUTPUT ACCEPT [4:432]
4 -A INPUT -p tcp -m tcp --dport 3306 -j ACCEPT
5 -A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
6 -A INPUT -p tcp -m tcp --dport 6644 -j ACCEPT
7 -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
8 -A INPUT -p icmp -j ACCEPT
9 -A INPUT -i lo -j ACCEPT
10 -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT
11 -A INPUT -j REJECT --reject-with icmp-host-prohibited
12 -A FORWARD -j REJECT --reject-with icmp-host-prohibited
13 COMMIT
14 # Completed on Thu Jul 31 22:18:28 2014
防火墙启动不了,提示20行有问题,可是我这就14行啊
2 :FORWARD ACCEPT [0:0]
3 :OUTPUT ACCEPT [4:432]
4 -A INPUT -p tcp -m tcp --dport 3306 -j ACCEPT
5 -A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
6 -A INPUT -p tcp -m tcp --dport 6644 -j ACCEPT
7 -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
8 -A INPUT -p icmp -j ACCEPT
9 -A INPUT -i lo -j ACCEPT
10 -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT
11 -A INPUT -j REJECT --reject-with icmp-host-prohibited
12 -A FORWARD -j REJECT --reject-with icmp-host-prohibited
13 COMMIT
14 # Completed on Thu Jul 31 22:18:28 2014
防火墙启动不了,提示20行有问题,可是我这就14行啊
