#########################################
### iptables-save on CC (marula) ########
#########################################
# Generated by iptables-save v1.4.4 on Thu May 20 12:27:35 2010
*filter
:INPUT ACCEPT [7885:4384510]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [6410:6030678]
:admin-default - [0:0]
:admin-uectest-g0 - [0:0]
-A FORWARD -m conntrack --ctstate ESTABLISHED -j ACCEPT 
-A FORWARD ! -d 172.19.0.0/16 -j ACCEPT 
-A FORWARD -j admin-default 
-A FORWARD -s 172.19.1.0/27 -d 172.19.1.0/27 -j ACCEPT 
-A FORWARD -s 172.19.1.32/27 -d 172.19.1.32/27 -j ACCEPT 
-A FORWARD -j admin-uectest-g0 
-A admin-default -d 172.19.1.0/27 -p tcp -m tcp --dport 22 -j ACCEPT 
-A admin-uectest-g0 -d 172.19.1.32/27 -p tcp -m tcp --dport 22 -j ACCEPT 
COMMIT
# Completed on Thu May 20 12:27:35 2010
# Generated by iptables-save v1.4.4 on Thu May 20 12:27:35 2010
*nat
:PREROUTING ACCEPT [276:17825]
:POSTROUTING ACCEPT [3:984]
:OUTPUT ACCEPT [163:10613]
-A PREROUTING -s 172.19.0.0/16 -d 169.254.169.254/32 -p tcp -m tcp --dport 80 -j DNAT --to-destination 10.55.55.2:8773 
-A PREROUTING -d 10.55.55.100/32 -j DNAT --to-destination 172.19.1.2 
-A PREROUTING -d 10.55.55.224/32 -j DNAT --to-destination 172.19.1.43 
-A PREROUTING -d 10.55.55.226/32 -j DNAT --to-destination 172.19.1.51 
-A PREROUTING -d 10.55.55.227/32 -j DNAT --to-destination 172.19.1.53 
-A PREROUTING -d 10.55.55.195/32 -j DNAT --to-destination 172.19.1.41 
-A PREROUTING -d 10.55.55.229/32 -j DNAT --to-destination 172.19.1.55 
-A PREROUTING -d 10.55.55.230/32 -j DNAT --to-destination 172.19.1.44 
-A PREROUTING -d 10.55.55.114/32 -j DNAT --to-destination 172.19.1.38 
-A PREROUTING -d 10.55.55.228/32 -j DNAT --to-destination 172.19.1.50 
-A PREROUTING -d 10.55.55.213/32 -j DNAT --to-destination 172.19.1.37 
-A PREROUTING -d 10.55.55.217/32 -j DNAT --to-destination 172.19.1.59 
-A PREROUTING -d 10.55.55.231/32 -j DNAT --to-destination 172.19.1.54 
-A PREROUTING -d 10.55.55.232/32 -j DNAT --to-destination 172.19.1.60 
-A PREROUTING -d 10.55.55.233/32 -j DNAT --to-destination 172.19.1.62 
-A POSTROUTING -s 172.19.1.62/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.233 
-A POSTROUTING -s 172.19.1.60/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.232 
-A POSTROUTING -s 172.19.1.54/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.231 
-A POSTROUTING -s 172.19.1.59/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.217 
-A POSTROUTING -s 172.19.1.37/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.213 
-A POSTROUTING -s 172.19.1.50/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.228 
-A POSTROUTING -s 172.19.1.38/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.114 
-A POSTROUTING -s 172.19.1.44/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.230 
-A POSTROUTING -s 172.19.1.55/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.229 
-A POSTROUTING -s 172.19.1.41/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.195 
-A POSTROUTING -s 172.19.1.53/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.227 
-A POSTROUTING -s 172.19.1.51/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.226 
-A POSTROUTING -s 172.19.1.43/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.224 
-A POSTROUTING -s 172.19.1.2/32 ! -d 172.19.0.0/16 -j SNAT --to-source 10.55.55.100 
-A POSTROUTING ! -s 127.0.0.0/8 ! -d 172.19.0.0/16 -j MASQUERADE 
-A OUTPUT -d 10.55.55.100/32 -j DNAT --to-destination 172.19.1.2 
-A OUTPUT -d 10.55.55.224/32 -j DNAT --to-destination 172.19.1.43 
-A OUTPUT -d 10.55.55.226/32 -j DNAT --to-destination 172.19.1.51 
-A OUTPUT -d 10.55.55.227/32 -j DNAT --to-destination 172.19.1.53 
-A OUTPUT -d 10.55.55.195/32 -j DNAT --to-destination 172.19.1.41 
-A OUTPUT -d 10.55.55.229/32 -j DNAT --to-destination 172.19.1.55 
-A OUTPUT -d 10.55.55.230/32 -j DNAT --to-destination 172.19.1.44 
-A OUTPUT -d 10.55.55.114/32 -j DNAT --to-destination 172.19.1.38 
-A OUTPUT -d 10.55.55.228/32 -j DNAT --to-destination 172.19.1.50 
-A OUTPUT -d 10.55.55.213/32 -j DNAT --to-destination 172.19.1.37 
-A OUTPUT -d 10.55.55.217/32 -j DNAT --to-destination 172.19.1.59 
-A OUTPUT -d 10.55.55.231/32 -j DNAT --to-destination 172.19.1.54 
-A OUTPUT -d 10.55.55.232/32 -j DNAT --to-destination 172.19.1.60 
-A OUTPUT -d 10.55.55.233/32 -j DNAT --to-destination 172.19.1.62 
COMMIT
# Completed on Thu May 20 12:27:35 2010


#########################################
### iptables-save on CLC (cempedak) #####
#########################################
# Generated by iptables-save v1.4.4 on Thu May 20 12:28:30 2010
*filter
:INPUT ACCEPT [176080091:39150213768]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [166624003:35998821454]
COMMIT
# Completed on Thu May 20 12:28:30 2010
# Generated by iptables-save v1.4.4 on Thu May 20 12:28:30 2010
*nat
:PREROUTING ACCEPT [176903:10953048]
:POSTROUTING ACCEPT [1793611:108274617]
:OUTPUT ACCEPT [1793611:108274617]
COMMIT
# Completed on Thu May 20 12:28:30 2010

#########################################
### iptables-save on NC-1 (sapodilla) ###
#########################################
# Generated by iptables-save v1.4.4 on Thu May 20 12:24:02 2010
*nat
:PREROUTING ACCEPT [435725:32195261]
:POSTROUTING ACCEPT [20094:1626686]
:OUTPUT ACCEPT [1571:268771]
-A POSTROUTING -s 192.168.122.0/24 ! -d 192.168.122.0/24 -j MASQUERADE 
COMMIT
# Completed on Thu May 20 12:24:02 2010
# Generated by iptables-save v1.4.4 on Thu May 20 12:24:02 2010
*filter
:INPUT ACCEPT [6808132:3760146259]
:FORWARD ACCEPT [183444:24089201]
:OUTPUT ACCEPT [4898698:2523032315]
-A INPUT -i virbr0 -p udp -m udp --dport 53 -j ACCEPT 
-A INPUT -i virbr0 -p tcp -m tcp --dport 53 -j ACCEPT 
-A INPUT -i virbr0 -p udp -m udp --dport 67 -j ACCEPT 
-A INPUT -i virbr0 -p tcp -m tcp --dport 67 -j ACCEPT 
-A FORWARD -d 192.168.122.0/24 -o virbr0 -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A FORWARD -s 192.168.122.0/24 -i virbr0 -j ACCEPT 
-A FORWARD -i virbr0 -o virbr0 -j ACCEPT 
-A FORWARD -o virbr0 -j REJECT --reject-with icmp-port-unreachable 
-A FORWARD -i virbr0 -j REJECT --reject-with icmp-port-unreachable 
COMMIT
# Completed on Thu May 20 12:24:02 2010

#########################################
### iptables-save on NC-1 (soncoya) #####
#########################################
# Generated by iptables-save v1.4.4 on Thu May 20 12:27:20 2010
*nat
:PREROUTING ACCEPT [620690:49741932]
:POSTROUTING ACCEPT [160623:21334047]
:OUTPUT ACCEPT [5465:530390]
-A POSTROUTING -s 192.168.122.0/24 ! -d 192.168.122.0/24 -j MASQUERADE 
COMMIT
# Completed on Thu May 20 12:27:20 2010
# Generated by iptables-save v1.4.4 on Thu May 20 12:27:20 2010
*filter
:INPUT ACCEPT [11538489:7318463540]
:FORWARD ACCEPT [1474184:320867205]
:OUTPUT ACCEPT [7538619:5004352364]
-A INPUT -i virbr0 -p udp -m udp --dport 53 -j ACCEPT 
-A INPUT -i virbr0 -p tcp -m tcp --dport 53 -j ACCEPT 
-A INPUT -i virbr0 -p udp -m udp --dport 67 -j ACCEPT 
-A INPUT -i virbr0 -p tcp -m tcp --dport 67 -j ACCEPT 
-A FORWARD -d 192.168.122.0/24 -o virbr0 -m state --state RELATED,ESTABLISHED -j ACCEPT 
-A FORWARD -s 192.168.122.0/24 -i virbr0 -j ACCEPT 
-A FORWARD -i virbr0 -o virbr0 -j ACCEPT 
-A FORWARD -o virbr0 -j REJECT --reject-with icmp-port-unreachable 
-A FORWARD -i virbr0 -j REJECT --reject-with icmp-port-unreachable 
COMMIT
# Completed on Thu May 20 12:27:20 2010