0 ;;; Bloqueio do IP reverso
chain=input content=user.veloxzone.com.br action=drop
1 ;;; Allow Established connections
chain=input connection-state=established action=accept
2 ;;; Drop Invalid connections
chain=input connection-state=invalid action=drop
3 ;;; Allow UDP
chain=input protocol=udp action=accept
4 ;;; Allow ICMP
chain=input protocol=icmp action=accept
5 ;;; Bloqueio do Proxy externo
chain=input in-interface=Link protocol=tcp dst-port=3128 action=drop
6 ;;; Bloqueio do Hamachi
chain=forward dst-address=74.201.74.0/24 protocol=tcp dst-port=443
connection-state=established action=drop
7 chain=forward protocol=tcp dst-port=12975 connection-state=established
action=drop
8 ;;; Bloqueio do NetBIOS
chain=forward protocol=tcp src-port=135-139 dst-port=135-139
action=drop
9 chain=forward protocol=tcp src-port=445 dst-port=445 action=drop
10 chain=forward protocol=udp src-port=135-139 dst-port=135-139 action=drop
11 chain=forward protocol=udp src-port=445 dst-port=445 action=drop
12 ;;; Drop MyDoom
chain=virus protocol=tcp dst-port=1080 action=drop
13 ;;; Drop MyDoom.B
chain=virus protocol=tcp dst-port=10080 action=drop
14 chain=virus protocol=tcp dst-port=3127 action=drop
15 ;;; Drop Beagle
chain=virus protocol=tcp dst-port=2535 action=drop
16 ;;; Drop Beagle.C-K
chain=virus protocol=tcp dst-port=2745 action=drop
17 ;;; Drop Beagle.B
chain=virus protocol=tcp dst-port=8866 action=drop
chain=virus protocol=tcp dst-port=3410 action=drop
19 ;;; Drop Sasser
chain=virus protocol=tcp dst-port=5554 action=drop
20 ;;; Drop SubSeven
chain=virus protocol=tcp dst-port=27374 action=drop
21 ;;; Drop Phabot, Agobot e Gaobot
chain=virus protocol=tcp dst-port=65506 action=drop
22 ;;; Drop Pushdo.EV
chain=virus protocol=tcp dst-port=2581 action=drop
23 ;;; Drop Klez.I
chain=virus protocol=tcp dst-port=36794 action=drop
24 ;;; Drop Cain and Abel
chain=virus protocol=tcp dst-port=666 action=drop
25 ;;; Drop Agent31
chain=virus protocol=tcp dst-port=31 action=drop
26 ;;; Drop Agent40421
chain=virus protocol=tcp dst-port=40421 action=drop
27 ;;; Drop Backdoor-G
chain=virus protocol=tcp dst-port=1243 action=drop
28 ;;; Drop Backdoor
chain=virus protocol=tcp dst-port=999 action=drop
29 ;;; Drop SubSARI
chain=virus protocol=tcp dst-port=3131 action=drop
30 ;;; Drop Netbus Worm
chain=virus protocol=tcp dst-port=6666 action=drop
31 ;;; Drop DarkFTP
chain=virus protocol=tcp dst-port=6667 action=drop
32 ;;; Drop Worms
chain=virus protocol=tcp dst-port=31337 action=drop
25 ;;; Drop Agent31
chain=virus protocol=tcp dst-port=31 action=drop
26 ;;; Drop Agent40421
chain=virus protocol=tcp dst-port=40421 action=drop
27 ;;; Drop Backdoor-G
chain=virus protocol=tcp dst-port=1243 action=drop
28 ;;; Drop Backdoor
chain=virus protocol=tcp dst-port=999 action=drop
29 ;;; Drop SubSARI
chain=virus protocol=tcp dst-port=3131 action=drop
30 ;;; Drop Netbus Worm
chain=virus protocol=tcp dst-port=6666 action=drop
31 ;;; Drop DarkFTP
chain=virus protocol=tcp dst-port=6667 action=drop