istio.io/istio@v0.0.0-20240520182934-d79c90f27776/tools/istio-iptables/pkg/capture/testdata/ip-range.golden

istio.io/istio@v0.0.0-20240520182934-d79c90f27776/tools/istio-iptables/pkg/capture/testdata/ip-range.golden (about)

     1  iptables -t nat -N ISTIO_INBOUND
     2  iptables -t nat -N ISTIO_REDIRECT
     3  iptables -t nat -N ISTIO_IN_REDIRECT
     4  iptables -t nat -N ISTIO_OUTPUT
     5  iptables -t raw -N ISTIO_OUTPUT
     6  iptables -t nat -A ISTIO_INBOUND -p tcp --dport 15008 -j RETURN
     7  iptables -t nat -A ISTIO_REDIRECT -p tcp -j REDIRECT --to-ports 15001
     8  iptables -t nat -A ISTIO_IN_REDIRECT -p tcp -j REDIRECT --to-ports 15006
     9  iptables -t nat -A OUTPUT -p tcp -j ISTIO_OUTPUT
    10  iptables -t nat -A ISTIO_OUTPUT -o lo -s 127.0.0.6/32 -j RETURN
    11  iptables -t nat -A ISTIO_OUTPUT -o lo ! -d 127.0.0.1/32 -p tcp -m multiport ! --dports 53,15008 -m owner --uid-owner 3 -j ISTIO_IN_REDIRECT
    12  iptables -t nat -A ISTIO_OUTPUT -o lo -p tcp ! --dport 53 -m owner ! --uid-owner 3 -j RETURN
    13  iptables -t nat -A ISTIO_OUTPUT -m owner --uid-owner 3 -j RETURN
    14  iptables -t nat -A ISTIO_OUTPUT -o lo ! -d 127.0.0.1/32 -p tcp -m multiport ! --dports 53,15008 -m owner --uid-owner 4 -j ISTIO_IN_REDIRECT
    15  iptables -t nat -A ISTIO_OUTPUT -o lo -p tcp ! --dport 53 -m owner ! --uid-owner 4 -j RETURN
    16  iptables -t nat -A ISTIO_OUTPUT -m owner --uid-owner 4 -j RETURN
    17  iptables -t nat -A ISTIO_OUTPUT -o lo ! -d 127.0.0.1/32 -p tcp ! --dport 15008 -m owner --gid-owner 1 -j ISTIO_IN_REDIRECT
    18  iptables -t nat -A ISTIO_OUTPUT -o lo -p tcp ! --dport 53 -m owner ! --gid-owner 1 -j RETURN
    19  iptables -t nat -A ISTIO_OUTPUT -m owner --gid-owner 1 -j RETURN
    20  iptables -t nat -A ISTIO_OUTPUT -o lo ! -d 127.0.0.1/32 -p tcp ! --dport 15008 -m owner --gid-owner 2 -j ISTIO_IN_REDIRECT
    21  iptables -t nat -A ISTIO_OUTPUT -o lo -p tcp ! --dport 53 -m owner ! --gid-owner 2 -j RETURN
    22  iptables -t nat -A ISTIO_OUTPUT -m owner --gid-owner 2 -j RETURN
    23  iptables -t nat -A ISTIO_OUTPUT -p tcp --dport 53 -d 127.0.0.53/32 -j REDIRECT --to-ports 15053
    24  iptables -t nat -A ISTIO_OUTPUT -d 127.0.0.1/32 -j RETURN
    25  iptables -t nat -A ISTIO_OUTPUT -d 1.1.0.0/16 -j RETURN
    26  iptables -t nat -A ISTIO_OUTPUT -d 9.9.0.0/16 -j ISTIO_REDIRECT
    27  iptables -t nat -A ISTIO_OUTPUT -j RETURN
    28  iptables -t nat -A OUTPUT -p udp -j ISTIO_OUTPUT
    29  iptables -t raw -A OUTPUT -p udp -j ISTIO_OUTPUT
    30  iptables -t nat -A ISTIO_OUTPUT -p udp --dport 53 -m owner --uid-owner 3 -j RETURN
    31  iptables -t nat -A ISTIO_OUTPUT -p udp --dport 53 -m owner --uid-owner 4 -j RETURN
    32  iptables -t nat -A ISTIO_OUTPUT -p udp --dport 53 -m owner --gid-owner 1 -j RETURN
    33  iptables -t nat -A ISTIO_OUTPUT -p udp --dport 53 -m owner --gid-owner 2 -j RETURN
    34  iptables -t nat -A ISTIO_OUTPUT -p udp --dport 53 -d 127.0.0.53/32 -j REDIRECT --to-port 15053
    35  iptables -t raw -A ISTIO_OUTPUT -p udp --dport 53 -m owner --uid-owner 3 -j CT --zone 1
    36  iptables -t raw -A ISTIO_OUTPUT -p udp --sport 15053 -m owner --uid-owner 3 -j CT --zone 2
    37  iptables -t raw -A ISTIO_OUTPUT -p udp --dport 53 -m owner --uid-owner 4 -j CT --zone 1
    38  iptables -t raw -A ISTIO_OUTPUT -p udp --sport 15053 -m owner --uid-owner 4 -j CT --zone 2
    39  iptables -t raw -A ISTIO_OUTPUT -p udp --dport 53 -m owner --gid-owner 1 -j CT --zone 1
    40  iptables -t raw -A ISTIO_OUTPUT -p udp --sport 15053 -m owner --gid-owner 1 -j CT --zone 2
    41  iptables -t raw -A ISTIO_OUTPUT -p udp --dport 53 -m owner --gid-owner 2 -j CT --zone 1
    42  iptables -t raw -A ISTIO_OUTPUT -p udp --sport 15053 -m owner --gid-owner 2 -j CT --zone 2
    43  iptables -t raw -A ISTIO_OUTPUT -p udp --dport 53 -d 127.0.0.53/32 -j CT --zone 2
    44  iptables -t raw -A PREROUTING -p udp --sport 53 -s 127.0.0.53/32 -j CT --zone 1
    45  iptables-save