root@mail:~# sudo ufw insert 1 deny from 46.148.40.0/24 to any
Пропуск вставки существующего правила
root@mail:~# sudo ufw status numbered
Состояние: активен
В Действие Из
- -------- --
[ 1] 22/tcp LIMIT IN Anywhere
[ 2] 53 ALLOW IN Anywhere
[ 3] 25/tcp ALLOW IN Anywhere
[ 4] 465/tcp ALLOW IN Anywhere
[ 5] 587/tcp ALLOW IN Anywhere
[ 6] 993/tcp ALLOW IN Anywhere
[ 7] 995/tcp ALLOW IN Anywhere
[ 8] 4190/tcp ALLOW IN Anywhere
[ 9] 80/tcp ALLOW IN Anywhere
[10] 443 ALLOW IN Anywhere
[11] Anywhere REJECT IN 46.148.40.0/24
[12] Anywhere REJECT IN 187.192.0.0/11
[13] 22/tcp (v6) LIMIT IN Anywhere (v6)
[14] 53 (v6) ALLOW IN Anywhere (v6)
[15] 25/tcp (v6) ALLOW IN Anywhere (v6)
[16] 465/tcp (v6) ALLOW IN Anywhere (v6)
[17] 587/tcp (v6) ALLOW IN Anywhere (v6)
[18] 993/tcp (v6) ALLOW IN Anywhere (v6)
[19] 995/tcp (v6) ALLOW IN Anywhere (v6)
[20] 4190/tcp (v6) ALLOW IN Anywhere (v6)
[21] 80/tcp (v6) ALLOW IN Anywhere (v6)
[22] 443 (v6) ALLOW IN Anywhere (v6)
root@mail:~# sudo iptables -L INPUT
Chain INPUT (policy DROP)
target prot opt source destination
ufw-before-logging-input all -- anywhere anywhere
ufw-before-input all -- anywhere anywhere
ufw-after-input all -- anywhere anywhere
ufw-after-logging-input all -- anywhere anywhere
ufw-reject-input all -- anywhere anywhere
ufw-track-input all -- anywhere anywhere
DROP all -- 46.148.40.0/24 anywhere
root@mail:~# openssl ciphers -v | awk '{print $2}' | sort | uniq
SSLv3
TLSv1
TLSv1.2
TLSv1.3