__ __ __ __ _____ _ _ _____ _ _ _ | \/ | \ \ / / | __ \ (_) | | / ____| | | | | | \ / |_ __\ V / | |__) | __ ___ ____ _| |_ ___ | (___ | |__ ___| | | | |\/| | '__|> < | ___/ '__| \ \ / / _` | __/ _ \ \___ \| '_ \ / _ \ | | | | | | |_ / . \ | | | | | |\ V / (_| | || __/ ____) | | | | __/ | | |_| |_|_(_)_/ \_\ |_| |_| |_| \_/ \__,_|\__\___| |_____/|_| |_|\___V 2.1 if you need WebShell for Seo everyday contact me on Telegram Telegram Address : @jackleetFor_More_Tools:
#!/usr/sbin/nft -f
# This example file shows how to use ct helpers in the nftables framework.
# Note that nftables includes interesting improvements compared to how this
# was done with iptables, such as loading multiple helpers with a single rule
# This script is meant to be loaded with `nft -f <file>`
# You require linux kernel >= 4.12 and nft >= 0.8
# For up-to-date information please visit https://wiki.nftables.org
# Using ct helpers is an important security feature when doing stateful
# firewalling, since it mitigate certain networking attacks.
# More info at: https://home.regit.org/netfilter-en/secure-use-of-helpers/
flush ruleset
table inet filter {
# declare helpers of this table
ct helper ftp-standard {
type "ftp" protocol tcp;
l3proto inet
}
ct helper sip-5060 {
type "sip" protocol udp;
l3proto inet
}
ct helper tftp-69 {
type "tftp" protocol udp
l3proto inet
}
chain input {
type filter hook input priority 0; policy drop;
ct state established,related accept
# assign a single helper in a single rule
tcp dport 21 ct helper set "ftp-standard"
# assign multiple helpers in a single rule
ct helper set udp dport map {
69 : "tftp-69", \
5060 : "sip-5060" }
}
}
| Name | Type | Size | Permission | Actions |
|---|---|---|---|---|
| sysvinit | Folder | 0755 |
|
|
| README | File | 475 B | 0644 |
|
| all-in-one.nft | File | 1016 B | 0644 |
|
| arp-filter.nft | File | 129 B | 0644 |
|
| bridge-filter.nft | File | 197 B | 0644 |
|
| ct_helpers.nft | File | 1.23 KB | 0755 |
|
| inet-filter.nft | File | 187 B | 0644 |
|
| inet-nat.nft | File | 251 B | 0644 |
|
| ipv4-filter.nft | File | 182 B | 0644 |
|
| ipv4-mangle.nft | File | 74 B | 0644 |
|
| ipv4-nat.nft | File | 246 B | 0644 |
|
| ipv4-raw.nft | File | 137 B | 0644 |
|
| ipv6-filter.nft | File | 186 B | 0644 |
|
| ipv6-mangle.nft | File | 78 B | 0644 |
|
| ipv6-nat.nft | File | 253 B | 0644 |
|
| ipv6-raw.nft | File | 141 B | 0644 |
|
| load_balancing.nft | File | 1.81 KB | 0755 |
|
| nat.nft | File | 1.14 KB | 0755 |
|
| netdev-ingress.nft | File | 128 B | 0644 |
|
| overview.nft | File | 1.05 KB | 0755 |
|
| pf.os | File | 28.21 KB | 0644 |
|
| secmark.nft | File | 2.35 KB | 0755 |
|
| sets_and_maps.nft | File | 1.25 KB | 0755 |
|
| workstation.nft | File | 817 B | 0755 |
|