Screenshots 14.11.2024

20241120/iptables-01.txt

+cassini/root# iptables --list
+Chain INPUT (policy ACCEPT)
+target     prot opt source               destination
+
+Chain FORWARD (policy ACCEPT)
+target     prot opt source               destination
+
+Chain OUTPUT (policy ACCEPT)
+target     prot opt source               destination
+cassini/root# iptables -A OUTPUT -p tcp --dport 80 -j REJECT
+cassini/root# iptables --list
+Chain INPUT (policy ACCEPT)
+target     prot opt source               destination
+
+Chain FORWARD (policy ACCEPT)
+target     prot opt source               destination
+
+Chain OUTPUT (policy ACCEPT)
+target     prot opt source               destination
+REJECT     tcp  --  anywhere             anywhere             tcp dpt:http reject-with icmp-port-unreachable
+cassini/root#

20241120/iptables-02.txt

+cassini/home/peter/bo/2024ws/dbs/20241120> nc ngc224.gerwinski.de 80
+m31.gerwinski.de [88.198.170.60] 80 (http) : Connection refused
+cassini/home/peter/bo/2024ws/dbs/20241120>

20241120/iptables-03.txt

+cassini/root# iptables -A OUTPUT -p tcp --dport 80 -j REJECT
+cassini/root# iptables --list
+Chain INPUT (policy ACCEPT)
+target     prot opt source               destination
+
+Chain FORWARD (policy ACCEPT)
+target     prot opt source               destination
+
+Chain OUTPUT (policy ACCEPT)
+target     prot opt source               destination
+REJECT     tcp  --  anywhere             anywhere             tcp dpt:http reject-with icmp-port-unreachable
+cassini/root# iptables -D OUTPUT -p tcp --dport 80 -j REJECT
+cassini/root# iptables --list
+Chain INPUT (policy ACCEPT)
+target     prot opt source               destination
+
+Chain FORWARD (policy ACCEPT)
+target     prot opt source               destination
+
+Chain OUTPUT (policy ACCEPT)
+target     prot opt source               destination
+cassini/root#

20241120/iptables-04.txt

+cassini/home/peter/bo/2024ws/dbs/20241120> nc ngc224.gerwinski.de 80
+GET /^M
+<!doctype html public "-//W3C//DTD HTML 4.0 Transitional//EN">
+<html>
+ <head>
+  <title>ngc224.gerwinski.de</title>
+ </head>
+ <body background="ngc224.jpg" bgcolor="#000000" text="#CFCFCF"
+       link="#7F7FFF" alink="#CFCFFF" vlink="#FF5FFF">
+  <h1>ngc224.gerwinski.de - der Server</h1>
+  <p>Benannt nach der Andromeda-Galaxie - M31 - NGC224
+  <p align="center"><img src="null.png" alt="" width="1" height="1" vspace="360">
+  <p><font size="-2"><a href="http://www.peter.gerwinski.de">Peter Gerwinski</a><br>
+  <a href="http://www.noao.edu/image_gallery/html/im0424.html">Bild:
+  Bill Schoening, Vanessa Harvey/REU program/NOAO/AURA/NSF</a></font>
+ </body>
+</html>
+cassini/home/peter/bo/2024ws/dbs/20241120>
+

20241120/iptables-05.txt

+cassini/root# iptables -A OUTPUT -p tcp --dport 80 -j DROP
+cassini/root# iptables --list
+Chain INPUT (policy ACCEPT)
+target     prot opt source               destination
+
+Chain FORWARD (policy ACCEPT)
+target     prot opt source               destination
+
+Chain OUTPUT (policy ACCEPT)
+target     prot opt source               destination
+DROP       tcp  --  anywhere             anywhere             tcp dpt:http
+cassini/root#
+

20241120/iptables-06.txt

+cassini/home/peter/bo/2024ws/dbs/20241120> nc ngc224.gerwinski.de 80
+GET /^M
+^C
+cassini/home/peter/bo/2024ws/dbs/20241120> nc -v ngc224.gerwinski.de 80
+DNS fwd/rev mismatch: m31.gerwinski.de != mx1.gerwinski.de
+GET /^M
+^C
+cassini/home/peter/bo/2024ws/dbs/20241120> nc -v ngc224.gerwinski.de 443
+DNS fwd/rev mismatch: m31.gerwinski.de != mx1.gerwinski.de
+m31.gerwinski.de [88.198.170.60] 443 (https) open
+SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u3
+
+Invalid SSH identification string.
+cassini/home/peter/bo/2024ws/dbs/20241120>

20241120/iptables-07.txt

+cassini/root# iptables -A OUTPUT -p tcp --destination 88.198.170.60 --dport 80 -j REJECT
+cassini/root# iptables --list                                                                Chain INPUT (policy ACCEPT)
+target     prot opt source               destination
+
+Chain FORWARD (policy ACCEPT)
+target     prot opt source               destination
+
+Chain OUTPUT (policy ACCEPT)
+target     prot opt source               destination
+REJECT     tcp  --  anywhere             mx1.gerwinski.de     tcp dpt:http reject-with icmp-port-unreachable
+cassini/root#

20241120/iptables-08.txt

+cassini/root# iptables -A OUTPUT -p tcp -m state --state ESTABLISHED,RELATED -j ACCEPT
+cassini/root# iptables --list
+Chain INPUT (policy ACCEPT)
+target     prot opt source               destination
+
+Chain FORWARD (policy ACCEPT)
+target     prot opt source               destination
+
+Chain OUTPUT (policy ACCEPT)
+target     prot opt source               destination
+ACCEPT     tcp  --  anywhere             anywhere             state RELATED,ESTABLISHED
+cassini/root# iptables -A OUTPUT -p tcp -m state --state NEW -j LOG
+cassini/root# iptables --list
+Chain INPUT (policy ACCEPT)
+target     prot opt source               destination
+
+Chain FORWARD (policy ACCEPT)
+target     prot opt source               destination
+
+Chain OUTPUT (policy ACCEPT)
+target     prot opt source               destination
+ACCEPT     tcp  --  anywhere             anywhere             state RELATED,ESTABLISHED
+LOG        tcp  --  anywhere             anywhere             state NEW LOG level warn
+cassini/root#

20241120/iptables-09.txt

+cassini/home/peter/bo/2024ws/dbs/20241120> nc ngc224.gerwinski.de 80                         GET /^M
+<!doctype html public "-//W3C//DTD HTML 4.0 Transitional//EN">
+<html>
+ <head>
+  <title>ngc224.gerwinski.de</title>
+ </head>
+ <body background="ngc224.jpg" bgcolor="#000000" text="#CFCFCF"
+       link="#7F7FFF" alink="#CFCFFF" vlink="#FF5FFF">
+  <h1>ngc224.gerwinski.de - der Server</h1>
+  <p>Benannt nach der Andromeda-Galaxie - M31 - NGC224
+  <p align="center"><img src="null.png" alt="" width="1" height="1" vspace="360">
+  <p><font size="-2"><a href="http://www.peter.gerwinski.de">Peter Gerwinski</a><br>
+  <a href="http://www.noao.edu/image_gallery/html/im0424.html">Bild:
+  Bill Schoening, Vanessa Harvey/REU program/NOAO/AURA/NSF</a></font>
+ </body>
+</html>
+cassini/home/peter/bo/2024ws/dbs/20241120>

20241120/iptables-10.txt

+cassini/root# journalctl -f -k
+[...]
+Nov 20 14:03:01 cassini kernel: IN= OUT=wlan0 SRC=10.128.29.177 DST=88.198.170.60 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=39957 DF PROTO=TCP SPT=59150 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0
+Nov 20 14:03:12 cassini kernel: IN= OUT=wlan0 SRC=10.128.29.177 DST=195.37.15.39 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=57995 DF PROTO=TCP SPT=59442 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0
+Nov 20 14:03:12 cassini kernel: IN= OUT=wlan0 SRC=10.128.29.177 DST=195.37.15.39 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=61862 DF PROTO=TCP SPT=59456 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0
+^C
+cassini/root#