CarlStrandberg DD-WRT Novice
Joined: 02 Sep 2014 Posts: 2
|
Posted: Mon Aug 28, 2017 13:19 Post subject: R7000 iptables port 80 |
|
Hello everybody!
Need someone to check my iptable on my r7000 router.
Can't open port 80. Website working fine locally. Also want to kill port 81...
Lighttpd service is on, with port 80 and 443. Both are dead!
I have "Filter WAN NAT Redirection" OFF!
Just tried turning SPI Firewall OFF
Port 80 and 443 is the OPEN!(Obviously something wrong here)
(I have NOT tried adding port 80 manually)
Web Access is on (both http and https)
Remote Access is on although on port 81 (both on http and https)
Code: | root@Netgear R7000:/# iptables -L -v
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
333 29988 ACCEPT 0 -- any any anywhere anywhere state RELATED,ESTABLISHED
0 0 ACCEPT udp -- vlan2 any anywhere anywhere udp spt:bootps dpt:bootpc
0 0 ACCEPT tcp -- vlan2 any anywhere anywhere tcp dpt:ftp
0 0 DROP udp -- vlan2 any anywhere anywhere udp dpt:route
0 0 DROP udp -- br0 any anywhere anywhere udp dpt:route
0 0 ACCEPT udp -- any any anywhere anywhere udp dpt:route
0 0 ACCEPT ipv6 -- any any anywhere anywhere
18 936 ACCEPT tcp -- any any anywhere Netgear tcp dpt:81
0 0 DROP icmp -- vlan2 any anywhere anywhere
2 64 DROP igmp -- any any anywhere anywhere
12 928 ACCEPT 0 -- lo any anywhere anywhere state NEW
17 1590 ACCEPT 0 -- br0 any anywhere anywhere state NEW
8 400 DROP 0 -- any any anywhere anywhere
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
3308 3015K ACCEPT 0 -- any any anywhere anywhere state RELATED,ESTABLISHED
5 276 TCPMSS tcp -- any any anywhere anywhere tcp flags:SYN,RST/SYN TCPMSS clamp to PMTU
0 0 ACCEPT gre -- any vlan2 192.168.1.0/24 anywhere
0 0 ACCEPT tcp -- any vlan2 192.168.1.0/24 anywhere tcp dpt:1723
105 6737 lan2wan 0 -- any any anywhere anywhere
0 0 ACCEPT 0 -- br0 br0 anywhere anywhere
0 0 ACCEPT tcp -- any any anywhere xxxxxxxxxxx.bredbandsbolaget.se tcp dpt:2556
0 0 ACCEPT udp -- any any anywhere xxxxxxxxxxx.bredbandsbolaget.se udp dpt:2556
0 0 ACCEPT tcp -- any any anywhere Netgear tcp dpt:www
0 0 ACCEPT tcp -- any any anywhere Netgear tcp dpt:ftp
0 0 ACCEPT udp -- any any anywhere Netgear udp dpt:fsp
0 0 TRIGGER 0 -- vlan2 br0 anywhere anywhere TRIGGER type:in match:0 relate:0
105 6737 trigger_out 0 -- br0 any anywhere anywhere
73 5241 ACCEPT 0 -- br0 any anywhere anywhere state NEW
32 1496 DROP 0 -- any any anywhere anywhere
Chain OUTPUT (policy ACCEPT 390 packets, 56771 bytes)
pkts bytes target prot opt in out source destination
Chain advgrp_1 (0 references)
pkts bytes target prot opt in out source destination
Chain advgrp_10 (0 references)
pkts bytes target prot opt in out source destination
Chain advgrp_2 (0 references)
pkts bytes target prot opt in out source destination
Chain advgrp_3 (0 references)
pkts bytes target prot opt in out source destination
Chain advgrp_4 (0 references)
pkts bytes target prot opt in out source destination
Chain advgrp_5 (0 references)
pkts bytes target prot opt in out source destination
Chain advgrp_6 (0 references)
pkts bytes target prot opt in out source destination
Chain advgrp_7 (0 references)
pkts bytes target prot opt in out source destination
Chain advgrp_8 (0 references)
pkts bytes target prot opt in out source destination
Chain advgrp_9 (0 references)
pkts bytes target prot opt in out source destination
Chain grp_1 (0 references)
pkts bytes target prot opt in out source destination
Chain grp_10 (0 references)
pkts bytes target prot opt in out source destination
Chain grp_2 (0 references)
pkts bytes target prot opt in out source destination
Chain grp_3 (0 references)
pkts bytes target prot opt in out source destination
Chain grp_4 (0 references)
pkts bytes target prot opt in out source destination
Chain grp_5 (0 references)
pkts bytes target prot opt in out source destination
Chain grp_6 (0 references)
pkts bytes target prot opt in out source destination
Chain grp_7 (0 references)
pkts bytes target prot opt in out source destination
Chain grp_8 (0 references)
pkts bytes target prot opt in out source destination
Chain grp_9 (0 references)
pkts bytes target prot opt in out source destination
Chain lan2wan (1 references)
pkts bytes target prot opt in out source destination
Chain logaccept (0 references)
pkts bytes target prot opt in out source destination
0 0 LOG 0 -- any any anywhere anywhere state NEW LOG level warning tcp-sequence tcp-options ip-options prefix `ACCEPT '
0 0 ACCEPT 0 -- any any anywhere anywhere
Chain logbrute (0 references)
pkts bytes target prot opt in out source destination
0 0 0 -- any any anywhere anywhere recent: SET name: BRUTEFORCE side: source
0 0 RETURN 0 -- any any anywhere anywhere !recent: UPDATE seconds: 60 hit_count: 4 name: BRUTEFORCE side: source
0 0 RETURN 0 -- any any anywhere anywhere limit: avg 1/min burst 1
0 0 LOG 0 -- any any anywhere anywhere LOG level warning tcp-options ip-options prefix `[DROP BRUTEFORCE] : '
0 0 DROP 0 -- any any anywhere anywhere
Chain logdrop (0 references)
pkts bytes target prot opt in out source destination
0 0 LOG 0 -- any any anywhere anywhere state NEW LOG level warning tcp-sequence tcp-options ip-options prefix `DROP '
0 0 LOG 0 -- any any anywhere anywhere state INVALID LOG level warning tcp-sequence tcp-options ip-options prefix `DROP '
0 0 DROP 0 -- any any anywhere anywhere
Chain logreject (0 references)
pkts bytes target prot opt in out source destination
0 0 LOG 0 -- any any anywhere anywhere LOG level warning tcp-sequence tcp-options ip-options prefix `WEBDROP '
0 0 REJECT tcp -- any any anywhere anywhere reject-with tcp-reset
Chain trigger_out (1 references)
pkts bytes target prot opt in out source destination
root@Netgear R7000:/#
|
CHEERS! |
|