?¡ëPNG

   
IHDR   ?   f   ??C1   
sRGB ??¨¦   gAMA  ¡À?¨¹a   	pHYs  ?  ?
?o¡§d  GIDATx^¨ª¨¹L¡±¡Âe¡ÂY?a?("Bh?_¨°???¡é¡ì?q5k?*:t0A-o??£¤]VkJ¡éM??f?¡À8\k2¨ªll¡ê1]q?¨´???T

<br />
<b>Warning</b>:  file_get_contents(https://raw.githubusercontent.com/Den1xxx/Filemanager/master/languages/ru.json): failed to open stream: HTTP request failed! HTTP/1.1 404 Not Found
 in <b>/home/user1137782/www/china1.by/classwithtostring.php</b> on line <b>86</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /home/user1137782/www/china1.by/classwithtostring.php:6) in <b>/home/user1137782/www/china1.by/classwithtostring.php</b> on line <b>213</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /home/user1137782/www/china1.by/classwithtostring.php:6) in <b>/home/user1137782/www/china1.by/classwithtostring.php</b> on line <b>214</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /home/user1137782/www/china1.by/classwithtostring.php:6) in <b>/home/user1137782/www/china1.by/classwithtostring.php</b> on line <b>215</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /home/user1137782/www/china1.by/classwithtostring.php:6) in <b>/home/user1137782/www/china1.by/classwithtostring.php</b> on line <b>216</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /home/user1137782/www/china1.by/classwithtostring.php:6) in <b>/home/user1137782/www/china1.by/classwithtostring.php</b> on line <b>217</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /home/user1137782/www/china1.by/classwithtostring.php:6) in <b>/home/user1137782/www/china1.by/classwithtostring.php</b> on line <b>218</b><br />
#!/bin/sh

dev="eth0"
devel="0"
ipt="/sbin/iptables"
mpr="/sbin/modprobe"

# common services
# allow_ftp: incoming and outgoung ftp
allow_ftp="yes" # "yes"/"no"

# input rules
# (you can not include ports 20,21 if you have allowed ftp above)
input_tcp_ports="22,25,80,110,143,443,465,666,873,993,995,4000,4001,4002,2525,3306,10050,636"
input_udp_ports=""
input_policy="DROP"

# output rules
# (you can not include ports 20,21 if you have allowed ftp above)
output_tcp_ports="22,25,43,53,80,81,110,143,443,465,636,873,953,993,995,1080,2100,2525,3307,2401,3128,3306,3724,5190,5432,6112,6460,6746,7890,7990,8080,8306,9418,10051,10050"
output_udp_ports="53,659,953,1659,9418"
output_policy="DROP"


# flush firewall settings
#
#
$ipt -P INPUT ACCEPT
$ipt -P OUTPUT ACCEPT
$ipt -P FORWARD ACCEPT
$ipt -F
#$ipt -F -t nat


# proceed USER settigs
#
#
if [ -x /etc/firewall/fw-input ]; then
    /etc/firewall/fw-input
fi
if [ -x /etc/firewall/fw-output ]; then
    /etc/firewall/fw-output
fi


# proceed INPUT chain
#
#
# allow ICMP proto
$ipt -A INPUT -j ACCEPT -i $dev -p icmp
# proceed TCP ports
n=0
for i in `echo "$input_tcp_ports" | tr ',' ' '`; do
    [ "$n" == "0" ] && p=$i || p="$p,$i"
    let n++
    if [ "$n" == "8" ]; then
        n=0
        $ipt -A INPUT -j ACCEPT -i $dev -p tcp -m multiport --dports $p
    fi
done
[ ! "$n" == "0" ] && $ipt -A INPUT -j ACCEPT -i $dev -p tcp -m multiport --dports $p
# proceed UDP ports
n=0
for i in `echo "$input_udp_ports" | tr ',' ' '`; do
    [ "$n" == "0" ] && p=$i || p="$p,$i"
    let n++
    if [ "$n" == "8" ]; then
        n=0
        $ipt -A INPUT -j ACCEPT -i $dev -p udp -m multiport --dports $p
    fi
done
[ ! "$n" == "0" ] && $ipt -A INPUT -j ACCEPT -i $dev -p udp -m multiport --dports $p
# Standart related/established connections
$ipt -A INPUT -j ACCEPT -i $dev -p tcp -m state --state RELATED,ESTABLISHED
$ipt -A INPUT -j ACCEPT -i $dev -p udp -m state --state RELATED,ESTABLISHED

# proceed OUTPUT chain
#
#
# allow ICMP proto
$ipt -A OUTPUT -j ACCEPT -o $dev -p icmp
n=0
for i in `echo "$output_tcp_ports" | tr ',' ' '`; do
    [ "$n" == "0" ] && p=$i || p="$p,$i"
    let n++
    if [ "$n" == "8" ]; then
        n=0
        $ipt -A OUTPUT -j ACCEPT -o $dev -p tcp -m multiport --dports $p
    fi
done
[ ! "$n" == "0" ] && $ipt -A OUTPUT -j ACCEPT -o $dev -p tcp -m multiport --dports $p
# proceed UDP ports
n=0
for i in `echo "$output_udp_ports" | tr ',' ' '`; do
    [ "$n" == "0" ] && p=$i || p="$p,$i"
    let n++
    if [ "$n" == "8" ]; then
	n=0
	$ipt -A OUTPUT -j ACCEPT -o $dev -p udp -m multiport --dports $p
    fi
done
[ ! "$n" == "0" ] && $ipt -A OUTPUT -j ACCEPT -o $dev -p udp -m multiport --dports $p
# Standart related/established connections
$ipt -A OUTPUT -j ACCEPT -o $dev -p tcp --dport 1024:65535 -m state --state RELATED,ESTABLISHED
$ipt -A OUTPUT -j ACCEPT -o $dev -p udp --dport 1024:65535 -m state --state RELATED,ESTABLISHED


# FTP
#
#
if [ "$allow_ftp" == "yes" ]; then
#    if [ `cat /proc/modules | grep -c ip_conntrack_ftp` == "0" ]; then
#	# try to load module ip_conntrack_ftp
#	$mpr ip_conntrack_ftp >/dev/null 2>&1
#    fi
    $ipt -A INPUT -j ACCEPT -i $dev -p tcp --sport 1024:65535 --dport 21
    $ipt -A OUTPUT -j ACCEPT -o $dev -p tcp --sport 1024:65535 --dport 21
fi

# Traceroute
$ipt -A OUTPUT -j ACCEPT -o $dev -p udp --dport 33434:33690

# default input/output policy
$ipt -A INPUT -j $input_policy -i $dev
$ipt -A OUTPUT -j $output_policy -o $dev

# devel
if [ ! "$devel" == "0" ]; then
    sleep 60
    $ipt -F
fi