DEV Community

Vicente G. Reyes
Vicente G. Reyes

Posted on

How do you stop a persistent process listening on port 53?

I use a hackintosh - Linux Ubuntu Focal 20.04 running on my mac mini. The process in question is systemd-resolve which is listening on port 53. I've tried killing the process but it just keeps coming back. This may be the process that the neighbors used to mask themselves to watch what I do. Confronting is easy but denying one's action is easier and harder to prove on my side.

systemd-r 1107 systemd-resolve   13u  IPv4  35937      0t0  TCP localhost:domain (LISTEN)
Enter fullscreen mode Exit fullscreen mode

This is my current firewall rules:

float# ufw status
Status: active

To                         Action      From
--                         ------      ----
445                        DENY        Anywhere                  
1900                       DENY        Anywhere                  
5353                       DENY        Anywhere                  
5666:5667/tcp              REJECT      Anywhere                  
5666:5667/udp              REJECT      Anywhere                  
1900/udp                   REJECT      Anywhere                  
5431                       REJECT      Anywhere                  
49152                      REJECT      Anywhere                  
80                         REJECT      Anywhere                  
5000/tcp                   REJECT      Anywhere                  
631                        REJECT      Anywhere                  
22/tcp                     REJECT      Anywhere                  
137,138/udp                REJECT      Anywhere                  
139,445/tcp                REJECT      Anywhere                  
873/tcp                    REJECT      Anywhere                  
5353/udp                   REJECT      Anywhere                  
5666/udp                   REJECT      Anywhere                  
5667/udp                   REJECT      Anywhere                  
67/udp                     REJECT      Anywhere                  
68/udp                     REJECT      Anywhere                  
137/udp                    REJECT      Anywhere                  
138/udp                    REJECT      Anywhere                  
5000/udp                   REJECT      Anywhere                  
139                        REJECT      Anywhere                  
137                        REJECT      Anywhere                  
138                        REJECT      Anywhere                  
30666                      REJECT      Anywhere                  
6463                       REJECT      Anywhere                  
20808/udp                  REJECT      Anywhere                   (log-all)
49164                      REJECT      Anywhere                  
58184                      REJECT      Anywhere                  
213/udp                    DENY        Anywhere                  
161                        DENY        Anywhere                  
162                        DENY        Anywhere                  
9100                       DENY        Anywhere                  
23/tcp                     DENY        Anywhere                  
992                        DENY        Anywhere                  
10000/tcp                  DENY        Anywhere                  
10000:10010/tcp            DENY        Anywhere                  
111,2049/tcp               DENY        Anywhere                  
111,2049/udp               DENY        Anywhere                  
515/tcp                    DENY        Anywhere                  
6566/tcp                   DENY        Anywhere                  
224.0.0.251 5353/udp       REJECT      Anywhere                   (log-all)
7634/tcp                   REJECT      Anywhere                  
8200/tcp                   REJECT      Anywhere                  
3389/tcp                   REJECT      Anywhere                  
5222/tcp                   REJECT      Anywhere                  
5269/tcp                   REJECT      Anywhere                  
5223/tcp                   REJECT      Anywhere                  
5298                       REJECT      Anywhere                  
21                         REJECT      Anywhere                  
8000/tcp                   REJECT      Anywhere                  
8080                       REJECT      Anywhere                  
9777/udp                   REJECT      Anywhere                  
6543:6544/tcp              REJECT      Anywhere                  
8080/tcp                   REJECT      Anywhere                  
5004/udp                   REJECT      Anywhere                  
1234/udp                   REJECT      Anywhere                  
5000:15000/udp             REJECT      Anywhere                  
6005/tcp                   REJECT      Anywhere                  
5900/tcp                   REJECT      Anywhere                  
5800:5801/tcp              REJECT      Anywhere                  
5800:5803/tcp              REJECT      Anywhere                  
5800:5807/tcp              REJECT      Anywhere                  
5800/tcp                   REJECT      Anywhere                  
8081/tcp                   REJECT      Anywhere                  
4793,6463,56820/udp        REJECT      Anywhere                   (log-all)
45952                      REJECT      Anywhere                  
65535                      REJECT      1                          (log-all)
51298                      REJECT      Anywhere                  
34849                      REJECT      Anywhere                  
40427                      REJECT      Anywhere                  
36519                      REJECT      Anywhere                  
65535/tcp                  REJECT      1/tcp                      (log-all)
CUPS                       REJECT      Anywhere                  
Anywhere                   REJECT      0.0.0.0                   
Anywhere                   REJECT      127.0.0.1                 
53                         REJECT      Anywhere                  
445 (v6)                   DENY        Anywhere (v6)             
1900 (v6)                  DENY        Anywhere (v6)             
5353 (v6)                  DENY        Anywhere (v6)             
5666:5667/tcp (v6)         REJECT      Anywhere (v6)             
5666:5667/udp (v6)         REJECT      Anywhere (v6)             
5431 (v6)                  REJECT      Anywhere (v6)             
49152 (v6)                 REJECT      Anywhere (v6)             
80 (v6)                    REJECT      Anywhere (v6)             
5000/tcp (v6)              REJECT      Anywhere (v6)             
631 (v6)                   REJECT      Anywhere (v6)             
22/tcp (v6)                REJECT      Anywhere (v6)             
137,138/udp (v6)           REJECT      Anywhere (v6)             
139,445/tcp (v6)           REJECT      Anywhere (v6)             
873/tcp (v6)               REJECT      Anywhere (v6)             
5353/udp (v6)              REJECT      Anywhere (v6)             
5666/udp (v6)              REJECT      Anywhere (v6)             
5667/udp (v6)              REJECT      Anywhere (v6)             
67/udp (v6)                REJECT      Anywhere (v6)             
68/udp (v6)                REJECT      Anywhere (v6)             
137/udp (v6)               REJECT      Anywhere (v6)             
138/udp (v6)               REJECT      Anywhere (v6)             
139 (v6)                   REJECT      Anywhere (v6)             
137 (v6)                   REJECT      Anywhere (v6)             
138 (v6)                   REJECT      Anywhere (v6)             
30666 (v6)                 REJECT      Anywhere (v6)             
6463 (v6)                  REJECT      Anywhere (v6)             
20808/udp (v6)             REJECT      Anywhere (v6)              (log-all)
49164 (v6)                 REJECT      Anywhere (v6)             
58184 (v6)                 REJECT      Anywhere (v6)             
213/udp (v6)               DENY        Anywhere (v6)             
161 (v6)                   DENY        Anywhere (v6)             
162 (v6)                   DENY        Anywhere (v6)             
9100 (v6)                  DENY        Anywhere (v6)             
23/tcp (v6)                DENY        Anywhere (v6)             
992 (v6)                   DENY        Anywhere (v6)             
10000/tcp (v6)             DENY        Anywhere (v6)             
10000:10010/tcp (v6)       DENY        Anywhere (v6)             
111,2049/tcp (v6)          DENY        Anywhere (v6)             
111,2049/udp (v6)          DENY        Anywhere (v6)             
515/tcp (v6)               DENY        Anywhere (v6)             
6566/tcp (v6)              DENY        Anywhere (v6)             
7634/tcp (v6)              REJECT      Anywhere (v6)             
8200/tcp (v6)              REJECT      Anywhere (v6)             
3389/tcp (v6)              REJECT      Anywhere (v6)             
5222/tcp (v6)              REJECT      Anywhere (v6)             
5269/tcp (v6)              REJECT      Anywhere (v6)             
5223/tcp (v6)              REJECT      Anywhere (v6)             
5298 (v6)                  REJECT      Anywhere (v6)             
21 (v6)                    REJECT      Anywhere (v6)             
8000/tcp (v6)              REJECT      Anywhere (v6)             
8080 (v6)                  REJECT      Anywhere (v6)             
9777/udp (v6)              REJECT      Anywhere (v6)             
6543:6544/tcp (v6)         REJECT      Anywhere (v6)             
8080/tcp (v6)              REJECT      Anywhere (v6)             
5004/udp (v6)              REJECT      Anywhere (v6)             
1234/udp (v6)              REJECT      Anywhere (v6)             
5000:15000/udp (v6)        REJECT      Anywhere (v6)             
6005/tcp (v6)              REJECT      Anywhere (v6)             
5900/tcp (v6)              REJECT      Anywhere (v6)             
5800:5801/tcp (v6)         REJECT      Anywhere (v6)             
5800:5803/tcp (v6)         REJECT      Anywhere (v6)             
5800:5807/tcp (v6)         REJECT      Anywhere (v6)             
5800/tcp (v6)              REJECT      Anywhere (v6)             
8081/tcp (v6)              REJECT      Anywhere (v6)             
4793,6463,56820/udp (v6)   REJECT      Anywhere (v6)              (log-all)
1900/udp (v6)              REJECT      Anywhere (v6)             
45952 (v6)                 REJECT      Anywhere (v6)                                (log-all)
51298 (v6)                 REJECT      Anywhere (v6)             
34849 (v6)                 REJECT      Anywhere (v6)             
40427 (v6)                 REJECT      Anywhere (v6)             
36519 (v6)                 REJECT      Anywhere (v6)                            (log-all)
CUPS (v6)                  REJECT      Anywhere (v6)             
53 (v6)                    REJECT      Anywhere (v6) 
Enter fullscreen mode Exit fullscreen mode

My iptables rules are as such:

float# iptables -nvL
Chain INPUT (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         
 774K   45M ACCEPT     all  --  lo     *       0.0.0.0/0            0.0.0.0/0           
  13M   18G ACCEPT     all  --  enp3s0f0 *       0.0.0.0/0            0.0.0.0/0            state RELATED,ESTABLISHED
    0     0 ACCEPT     icmp --  enp3s0f0 *       0.0.0.0/0            0.0.0.0/0            icmptype 8
 9062 1069K ufw-before-logging-input  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
 9062 1069K ufw-before-input  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
 1458 53882 ufw-after-input  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
 1306 46976 ufw-after-logging-input  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
 1306 46976 ufw-reject-input  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    0     0 ufw-track-input  all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain FORWARD (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 DOCKER-USER  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    0     0 DOCKER-ISOLATION-STAGE-1  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    0     0 ACCEPT     all  --  *      docker0  0.0.0.0/0            0.0.0.0/0            ctstate RELATED,ESTABLISHED
    0     0 DOCKER     all  --  *      docker0  0.0.0.0/0            0.0.0.0/0           
    0     0 ACCEPT     all  --  docker0 !docker0  0.0.0.0/0            0.0.0.0/0           
    0     0 ACCEPT     all  --  docker0 docker0  0.0.0.0/0            0.0.0.0/0           
    0     0 ufw-before-logging-forward  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    0     0 ufw-before-forward  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    0     0 ufw-after-forward  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    0     0 ufw-after-logging-forward  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    0     0 ufw-reject-forward  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
    0     0 ufw-track-forward  all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain OUTPUT (policy ACCEPT 4 packets, 216 bytes)
 pkts bytes target     prot opt in     out     source               destination         
5960K  987M ufw-before-logging-output  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
5960K  987M ufw-before-output  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
62347   15M ufw-after-output  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
62347   15M ufw-after-logging-output  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
62347   15M ufw-reject-output  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
62347   15M ufw-track-output  all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain DOCKER (1 references)
 pkts bytes target     prot opt in     out     source               destination         

Chain DOCKER-ISOLATION-STAGE-1 (1 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 DOCKER-ISOLATION-STAGE-2  all  --  docker0 !docker0  0.0.0.0/0            0.0.0.0/0           
    0     0 RETURN     all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain DOCKER-ISOLATION-STAGE-2 (1 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 DROP       all  --  *      docker0  0.0.0.0/0            0.0.0.0/0           
    0     0 RETURN     all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain DOCKER-USER (1 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 RETURN     all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain ufw-after-forward (1 references)
 pkts bytes target     prot opt in     out     source               destination         

Chain ufw-after-input (1 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 ufw-skip-to-policy-input  udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:137
    0     0 ufw-skip-to-policy-input  udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:138
    0     0 ufw-skip-to-policy-input  tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:139
    0     0 ufw-skip-to-policy-input  tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:445
    0     0 ufw-skip-to-policy-input  udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:67
    0     0 ufw-skip-to-policy-input  udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:68
    0     0 ufw-skip-to-policy-input  all  --  *      *       0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type BROADCAST

Chain ufw-after-logging-forward (1 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 LOG        all  --  *      *       0.0.0.0/0            0.0.0.0/0            LOG flags 0 level 4 prefix "[UFW BLOCK] "

Chain ufw-after-logging-input (1 references)
 pkts bytes target     prot opt in     out     source               destination         
   12   384 LOG        all  --  *      *       0.0.0.0/0            0.0.0.0/0            LOG flags 0 level 4 prefix "[UFW BLOCK] "

Chain ufw-after-logging-output (1 references)
 pkts bytes target     prot opt in     out     source               destination         
  941  212K LOG        all  --  *      *       0.0.0.0/0            0.0.0.0/0            LOG flags 0 level 4 prefix "[UFW ALLOW] "

Chain ufw-after-output (1 references)
 pkts bytes target     prot opt in     out     source               destination         

Chain ufw-before-forward (1 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 ACCEPT     all  --  *      *       0.0.0.0/0            0.0.0.0/0            ctstate RELATED,ESTABLISHED
    0     0 ACCEPT     icmp --  *      *       0.0.0.0/0            0.0.0.0/0            icmptype 3
    0     0 ACCEPT     icmp --  *      *       0.0.0.0/0            0.0.0.0/0            icmptype 11
    0     0 ACCEPT     icmp --  *      *       0.0.0.0/0            0.0.0.0/0            icmptype 12
    0     0 ACCEPT     icmp --  *      *       0.0.0.0/0            0.0.0.0/0            icmptype 8
    0     0 ufw-user-forward  all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain ufw-before-input (1 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 ACCEPT     all  --  lo     *       0.0.0.0/0            0.0.0.0/0           
    0     0 ACCEPT     all  --  *      *       0.0.0.0/0            0.0.0.0/0            ctstate RELATED,ESTABLISHED
    1    40 ufw-logging-deny  all  --  *      *       0.0.0.0/0            0.0.0.0/0            ctstate INVALID
    1    40 DROP       all  --  *      *       0.0.0.0/0            0.0.0.0/0            ctstate INVALID
    0     0 ACCEPT     icmp --  *      *       0.0.0.0/0            0.0.0.0/0            icmptype 3
    0     0 ACCEPT     icmp --  *      *       0.0.0.0/0            0.0.0.0/0            icmptype 11
    0     0 ACCEPT     icmp --  *      *       0.0.0.0/0            0.0.0.0/0            icmptype 12
    0     0 ACCEPT     icmp --  *      *       0.0.0.0/0            0.0.0.0/0            icmptype 8
    0     0 ACCEPT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp spt:67 dpt:68
  154 20016 ufw-not-local  all  --  *      *       0.0.0.0/0            0.0.0.0/0           
  132 18050 REJECT     udp  --  *      *       0.0.0.0/0            224.0.0.251          udp dpt:5353 reject-with icmp-port-unreachable
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            239.255.255.250      udp dpt:1900 reject-with icmp-port-unreachable
   22  1966 ufw-user-input  all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain ufw-before-logging-forward (1 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 LOG        all  --  *      *       0.0.0.0/0            0.0.0.0/0            LOG flags 0 level 4 prefix "[UFW AUDIT] "

Chain ufw-before-logging-input (1 references)
 pkts bytes target     prot opt in     out     source               destination         
  155 20056 LOG        all  --  *      *       0.0.0.0/0            0.0.0.0/0            LOG flags 0 level 4 prefix "[UFW AUDIT] "

Chain ufw-before-logging-output (1 references)
 pkts bytes target     prot opt in     out     source               destination         
36788 5262K LOG        all  --  *      *       0.0.0.0/0            0.0.0.0/0            LOG flags 0 level 4 prefix "[UFW AUDIT] "

Chain ufw-before-output (1 references)
 pkts bytes target     prot opt in     out     source               destination         
 1199  118K ACCEPT     all  --  *      lo      0.0.0.0/0            0.0.0.0/0           
34648 4933K ACCEPT     all  --  *      *       0.0.0.0/0            0.0.0.0/0            ctstate RELATED,ESTABLISHED
  941  212K ufw-user-output  all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain ufw-logging-allow (0 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 LOG        all  --  *      *       0.0.0.0/0            0.0.0.0/0            LOG flags 0 level 4 prefix "[UFW ALLOW] "

Chain ufw-logging-deny (2 references)
 pkts bytes target     prot opt in     out     source               destination         
    1    40 LOG        all  --  *      *       0.0.0.0/0            0.0.0.0/0            ctstate INVALID LOG flags 0 level 4 prefix "[UFW AUDIT INVALID] "
    1    40 LOG        all  --  *      *       0.0.0.0/0            0.0.0.0/0            LOG flags 0 level 4 prefix "[UFW BLOCK] "

Chain ufw-not-local (1 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 RETURN     all  --  *      *       0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type LOCAL
  144 18434 RETURN     all  --  *      *       0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type MULTICAST
   10  1582 RETURN     all  --  *      *       0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type BROADCAST
    0     0 ufw-logging-deny  all  --  *      *       0.0.0.0/0            0.0.0.0/0            limit: avg 3/min burst 10
    0     0 DROP       all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain ufw-reject-forward (1 references)
 pkts bytes target     prot opt in     out     source               destination         

Chain ufw-reject-input (1 references)
 pkts bytes target     prot opt in     out     source               destination         
   12   384 REJECT     all  --  *      *       0.0.0.0/0            0.0.0.0/0            reject-with icmp-port-unreachable

Chain ufw-reject-output (1 references)
 pkts bytes target     prot opt in     out     source               destination         

Chain ufw-skip-to-policy-forward (0 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 DROP       all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain ufw-skip-to-policy-input (7 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 REJECT     all  --  *      *       0.0.0.0/0            0.0.0.0/0            reject-with icmp-port-unreachable

Chain ufw-skip-to-policy-output (0 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 ACCEPT     all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain ufw-track-forward (1 references)
 pkts bytes target     prot opt in     out     source               destination         

Chain ufw-track-input (1 references)
 pkts bytes target     prot opt in     out     source               destination         

Chain ufw-track-output (1 references)
 pkts bytes target     prot opt in     out     source               destination         
  248 14888 ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            ctstate NEW
  689  197K ACCEPT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            ctstate NEW

Chain ufw-user-forward (1 references)
 pkts bytes target     prot opt in     out     source               destination         

Chain ufw-user-input (1 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:445
    0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:445
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:1900
    0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:1900
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:5353
    0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:5353
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 5666:5667 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 5666:5667 reject-with icmp-port-unreachable
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:1900 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:5431 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:5431 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:49152 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:49152 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:80 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:80 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:5000 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:631 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:631 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:22 reject-with tcp-reset
    8   926 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 137,138 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 139,445 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:873 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:5353 reject-with icmp-port-unreachable
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:5666 reject-with icmp-port-unreachable
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:5667 reject-with icmp-port-unreachable
    2   656 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:67 reject-with icmp-port-unreachable
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:68 reject-with icmp-port-unreachable
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:137 reject-with icmp-port-unreachable
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:138 reject-with icmp-port-unreachable
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:5000 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:139 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:139 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:137 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:137 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:138 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:138 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:30666 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:30666 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:6463 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:6463 reject-with icmp-port-unreachable
    0     0 ufw-user-logging-input  udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:20808
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:20808 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:49164 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:49164 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:58184 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:58184 reject-with icmp-port-unreachable
    0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:213
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:161
    0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:161
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:162
    0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:162
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:9100
    0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:9100
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:23
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:992
    0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:992
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:10000
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 10000:10010
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 111,2049
    0     0 DROP       udp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 111,2049
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:515
    0     0 DROP       tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:6566
    0     0 ufw-user-logging-input  udp  --  *      *       0.0.0.0/0            224.0.0.251          udp dpt:5353
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            224.0.0.251          udp dpt:5353 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:7634 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:8200 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:3389 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:5222 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:5269 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:5223 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:5298 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:5298 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:21 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:21 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:8000 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:8080 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:8080 reject-with icmp-port-unreachable
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:9777 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 6543:6544 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:8080 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:5004 reject-with icmp-port-unreachable
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:1234 reject-with icmp-port-unreachable
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 5000:15000 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:6005 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:5900 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 5800:5801 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 5800:5803 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 5800:5807 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:5800 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:8081 reject-with tcp-reset
    0     0 ufw-user-logging-input  udp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 4793,6463,56820
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 4793,6463,56820 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:45952 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:45952 reject-with icmp-port-unreachable
    0     0 ufw-user-logging-input  tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp spt:1 dpt:65535
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp spt:1 dpt:65535 reject-with tcp-reset
    0     0 ufw-user-logging-input  udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp spt:1 dpt:65535
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp spt:1 dpt:65535 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:51298 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:51298 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:34849 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:34849 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:40427 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:40427 reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:36519 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:36519 reject-with icmp-port-unreachable
    0     0 ufw-user-logging-input  tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp spt:1 dpt:65535
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp spt:1 dpt:65535 reject-with tcp-reset
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:631 /* 'dapp_CUPS' */ reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:631 /* 'dapp_CUPS' */ reject-with icmp-port-unreachable
    0     0 REJECT     all  --  *      *       0.0.0.0              0.0.0.0/0            reject-with icmp-port-unreachable
    0     0 REJECT     all  --  *      *       127.0.0.1            0.0.0.0/0            reject-with icmp-port-unreachable
    0     0 REJECT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:53 reject-with tcp-reset
    0     0 REJECT     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:53 reject-with icmp-port-unreachable

Chain ufw-user-limit (0 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 LOG        all  --  *      *       0.0.0.0/0            0.0.0.0/0            limit: avg 3/min burst 5 LOG flags 0 level 4 prefix "[UFW LIMIT BLOCK] "
    0     0 REJECT     all  --  *      *       0.0.0.0/0            0.0.0.0/0            reject-with icmp-port-unreachable

Chain ufw-user-limit-accept (0 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 ACCEPT     all  --  *      *       0.0.0.0/0            0.0.0.0/0           

Chain ufw-user-logging-forward (0 references)
 pkts bytes target     prot opt in     out     source               destination         

Chain ufw-user-logging-input (6 references)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 LOG        udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:20808 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
    0     0 RETURN     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp dpt:20808
    0     0 LOG        udp  --  *      *       0.0.0.0/0            224.0.0.251          udp dpt:5353 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
    0     0 RETURN     udp  --  *      *       0.0.0.0/0            224.0.0.251          udp dpt:5353
    0     0 LOG        udp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 4793,6463,56820 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
    0     0 RETURN     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            multiport dports 4793,6463,56820
    0     0 LOG        tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp spt:1 dpt:65535 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
    0     0 RETURN     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp spt:1 dpt:65535
    0     0 LOG        udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp spt:1 dpt:65535 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
    0     0 RETURN     udp  --  *      *       0.0.0.0/0            0.0.0.0/0            udp spt:1 dpt:65535
    0     0 LOG        tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp spt:1 dpt:65535 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
    0     0 RETURN     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0            tcp spt:1 dpt:65535

Chain ufw-user-logging-output (0 references)
 pkts bytes target     prot opt in     out     source               destination         

Chain ufw-user-output (1 references)
 pkts bytes target     prot opt in     out     source               destination  
Enter fullscreen mode Exit fullscreen mode

Can I still save my machine or do I need to get a new one?

Top comments (0)