Código BASH:
Ver original$ sudo netstat -tulnp
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 1405/nginx -g daemo
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 1292/sshd
tcp6 0 0 :::22 :::* LISTEN 1292/sshd
udp 0 0 0.0.0.0:68 0.0.0.0:* 1198/dhclient
udp 0 0 192.168.56.103:123 0.0.0.0:* 1398/ntpd
udp 0 0 10.0.2.15:123 0.0.0.0:* 1398/ntpd
udp 0 0 127.0.0.1:123 0.0.0.0:* 1398/ntpd
udp 0 0 0.0.0.0:123 0.0.0.0:* 1398/ntpd
udp6 0 0 fe80::a00:27ff:fe54:123 :::* 1398/ntpd
udp6 0 0 fe80::a00:27ff:fe44:123 :::* 1398/ntpd
udp6 0 0 ::1:123 :::* 1398/ntpd
udp6 0 0 :::123 :::* 1398/ntpd
Código BASH:
Ver original$ sudo iptables -S
-P INPUT ACCEPT
-P FORWARD ACCEPT
-P OUTPUT ACCEPT
-A INPUT -p icmp -m comment --comment "000 accept all icmp" -j ACCEPT
-A INPUT -i lo -m comment --comment "001 accept all to lo interface" -j ACCEPT
-A INPUT -d 127.0.0.0/8 ! -i lo -m comment --comment "002 reject local traffic not on loopback interface" -j REJECT --reject-with icmp-port-unreachable
-A INPUT -m comment --comment "003 accept related established rules" -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -p tcp -m multiport --dports 22 -m comment --comment "100 tcp/22" -j ACCEPT
-A INPUT -p tcp -m multiport --dports 80 -m comment --comment "100 tcp/80" -j ACCEPT
-A INPUT -m comment --comment "999 drop all" -j DROP
Parece que está aquí el problema. A ver si me apaño para solucionarlo...