De retour après avoir sécurisé ma config (reste plus qu'à changer le port 5060). Pourriez-vous me donner votre avis sur le résultat de iptables -L -v ?
Code:
root@pcsat:/usr/bin# iptables -L -v
Chain INPUT (policy ACCEPT 39M packets, 15G bytes)
pkts bytes target prot opt in out source destination
36 2451 ACCEPT all -- any any 192.168.200.0/24 anywhere
0 0 DROP udp -- any any anywhere anywhere udp dpt:sip STRING match "Cirpack KeepAlive Packet" ALGO name bm TO 65535
0 0 ACCEPT udp -- eth0 any anywhere anywhere udp dpts:10000:20000
0 0 ACCEPT udp -- eth0 any 77.72.169.134 anywhere udp dpt:sip
0 0 ACCEPT udp -- eth0 any routed-static-PA.de.kpn-eurorings.net anywhere udp dpt:sip
0 0 ACCEPT udp -- eth0 any 77.72.169.134 anywhere udp dpt:sip
0 0 ACCEPT udp -- eth0 any routed-static-PA.de.kpn-eurorings.net anywhere udp dpt:sip
0 0 ACCEPT udp -- eth0 any 77.72.174.143 anywhere udp dpt:sip
0 0 ACCEPT all -- eth0 any anywhere anywhere state RELATED,ESTABLISHED
0 0 ACCEPT tcp -- eth0 any anywhere anywhere tcp dpt:domain
0 0 ACCEPT udp -- eth0 any anywhere anywhere udp dpt:domain
0 0 LOG_DROP all -- eth0 any anywhere anywhere
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 41M packets, 31G bytes)
pkts bytes target prot opt in out source destination
Chain LOG_DROP (1 references)
pkts bytes target prot opt in out source destination
0 0 LOG tcp -- any any anywhere anywhere tcp dpt:sip LOG level warning prefix `[IPTABLES DROP SIP] : '
0 0 LOG udp -- any any anywhere anywhere udp dpt:sip LOG level warning prefix `[IPTABLES DROP SIP] : '
0 0 LOG tcp -- any any anywhere anywhere LOG level warning prefix `[DROP] : '
0 0 REJECT all -- any any anywhere anywhere reject-with icmp-port-unreachable
Chain fail2ban-ASTERISK (0 references)
pkts bytes target prot opt in out source destination
63951 17M RETURN all -- any any anywhere anywhere
root@pcsat:/usr/bin#