Quote:
Originally Posted by falko
What are the outputs of and ? |
Master:
Code:
root@abda:/home/sysadmin# netstat -tap
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 localhost.localdo:10025 *:* LISTEN 4022/master
tcp 0 0 *:mysql *:* LISTEN 24476/mysqld
tcp 0 0 *:20874 *:* LISTEN 857/sshd
tcp 0 0 *:submission *:* LISTEN 4022/master
tcp 0 0 *:pop3 *:* LISTEN 988/dovecot
tcp 0 0 *:imap2 *:* LISTEN 988/dovecot
tcp 0 0 *:http-alt *:* LISTEN 1161/apache2
tcp 0 0 *:http *:* LISTEN 1161/apache2
tcp 0 0 *:tproxy *:* LISTEN 1161/apache2
tcp 0 0 *:ftp *:* LISTEN 20180/pure-ftpd (SE
tcp 0 0 abda.nextcode.in:domain *:* LISTEN 997/named
tcp 0 0 localhost.locald:domain *:* LISTEN 997/named
tcp 0 0 *:smtp *:* LISTEN 4022/master
tcp 0 0 localhost.localdoma:953 *:* LISTEN 997/named
tcp 0 0 *:10874 *:* LISTEN 2011/perl
tcp 0 0 *:https *:* LISTEN 1161/apache2
tcp 0 0 *:imaps *:* LISTEN 988/dovecot
tcp 0 0 *:pop3s *:* LISTEN 988/dovecot
tcp 0 0 localhost.localdom:9000 *:* LISTEN 1729/php-fpm.conf)
tcp 0 0 localhost.localdo:10024 *:* LISTEN 1258/amavisd (maste
tcp 0 0 abda.nextcode.inf:mysql ec2-184-169-151-2:37566 TIME_WAIT -
tcp 0 81 abda.nextcode.inf:imap2 66-87-66-105.pools:3439 FIN_WAIT1 -
tcp 0 0 abda.nextcode.info:pop3 dhcp64-134-221-23:49279 TIME_WAIT -
tcp 0 0 abda.nextcode.inf:imap2 pool-74-100-197-4:44946 ESTABLISHED 17663/imap-login
tcp 0 288 abda.nextcode.inf:20874 dhcp64-134-221-23:65465 ESTABLISHED 17953/sshd: sysadmi
tcp 0 0 abda.nextcode.inf:imap2 mobile-166-137-17:46414 ESTABLISHED 17373/imap-login
tcp 1 0 localhost.localdo:60571 localhost.localdo:10025 CLOSE_WAIT 7283/amavisd (ch13-
tcp 0 0 abda.nextcode.info:pop3 dhcp64-134-221-23:49278 TIME_WAIT -
tcp 0 942 abda.nextcode.inf:imap2 pool-74-100-197-4:41688 ESTABLISHED 17656/imap-login
tcp 1 0 localhost.localdo:60574 localhost.localdo:10025 CLOSE_WAIT 7281/amavisd (ch14-
tcp 0 0 abda.nextcode.inf:imap2 mobile-166-137-17:63374 ESTABLISHED 17553/imap-login
tcp6 0 0 [::]:20874 [::]:* LISTEN 857/sshd
tcp6 0 0 [::]:submission [::]:* LISTEN 4022/master
tcp6 0 0 [::]:pop3 [::]:* LISTEN 988/dovecot
tcp6 0 0 [::]:imap2 [::]:* LISTEN 988/dovecot
tcp6 0 0 [::]:ftp [::]:* LISTEN 20180/pure-ftpd (SE
tcp6 0 0 [::]:domain [::]:* LISTEN 997/named
tcp6 0 0 [::]:smtp [::]:* LISTEN 4022/master
tcp6 0 0 ip6-localhost:953 [::]:* LISTEN 997/named
tcp6 0 0 [::]:imaps [::]:* LISTEN 988/dovecot
tcp6 0 0 [::]:pop3s [::]:* LISTEN 988/dovecot
Code:
root@abda:/home/sysadmin# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
fail2ban-dovecot-pop3imap tcp -- anywhere anywhere multiport dports pop3,pop3s,imap2,imaps
fail2ban-pureftpd tcp -- anywhere anywhere multiport dports ftp
fail2ban-ssh tcp -- anywhere anywhere multiport dports ssh
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain fail2ban-dovecot-pop3imap (1 references)
target prot opt source destination
RETURN all -- anywhere anywhere
Chain fail2ban-pureftpd (1 references)
target prot opt source destination
RETURN all -- anywhere anywhere
Chain fail2ban-ssh (1 references)
target prot opt source destination
RETURN all -- anywhere anywhere
root@abda:/home/sysadmin#