i restore backup of 13-08-09 and try to run iptables-save and differance was of fresh installed version and 13-8-09 will try with 1 more backup (i think it prefix 10 to 443 ?) iptables-save |grep 443 -A AUTO_PRE -s 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 443 -m addrtype --dst-type ! LOCAL -j REDIRECT --to-ports 8080 -A AUTO_PRE -s 10.242.1.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 443 -m addrtype --dst-type ! LOCAL -j REDIRECT --to-ports 8080 -A INPUT -s 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 10443 -j ACCEPT -A INPUT -s 10.242.1.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 10443 -j ACCEPT -A OUTPUT -d 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 10443 --dport 1:65535 -j ACCEPT -A OUTPUT -d 10.242.1.0/255.255.255.0 -p tcp -m tcp --sport 10443 --dport 1:65535 -j ACCEPT -A OUTPUT -s ! 127.0.0.0/255.0.0.0 -o lo -p tcp -m tcp --sport 1:65535 --dport 10443 -m logmark --logmark 60005 -j LOGDROP -A AUTO_INPUT -s 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 10443 -j CONFIRMED -A AUTO_INPUT -s 10.242.1.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 10443 -j CONFIRMED -A AUTO_INPUT -p tcp -m tcp --sport 1:65535 --dport 443 -j CONFIRMED -A AUTO_OUTPUT -p tcp -m tcp --sport 1:65535 --dport 443 -j CONFIRMED -A AUTO_OUTPUT -p tcp -m tcp --sport 1:65535 --dport 443 -j CONFIRMED -A AUTO_OUTPUT -p tcp -m tcp --sport 1:65535 --dport 443 -j CONFIRMED -A AUTO_OUTPUT -p tcp -m tcp --sport 1:65535 --dport 443 -j CONFIRMED -A USR_FORWARD -s 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 443 -m logmark --logmark 6 -j LOGACCEPT -A USR_FORWARD -s 68.15.104.34 -i eth1 -p tcp -m tcp --sport 1:65535 --dport 443 -m logmark --logmark 8 -j LOGDROP ace75:/home/login # diff oldconfig138.txt 7480248.txt diff: oldconfig138.txt: No such file or directory diff: 7480248.txt: No such file or directory ace75:/home/login # cd / ace75:/ # diff oldconfig138.txt 7480248.txt 3,10c3,9 < -A INPUT -s 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 10443 -j ACCEPT < -A INPUT -s 10.242.1.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 10443 -j ACCEPT < -A OUTPUT -d 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 10443 --dport 1:65535 -j ACCEPT < -A OUTPUT -d 10.242.1.0/255.255.255.0 -p tcp -m tcp --sport 10443 --dport 1:65535 -j ACCEPT < -A OUTPUT -s ! 127.0.0.0/255.0.0.0 -o lo -p tcp -m tcp --sport 1:65535 --dport 10443 -m logmark --logmark 60005 -j LOGDROP < -A AUTO_INPUT -s 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 10443 -j CONFIRMED < -A AUTO_INPUT -s 10.242.1.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 10443 -j CONFIRMED < -A AUTO_INPUT -p tcp -m tcp --sport 1:65535 --dport 443 -j CONFIRMED --- > -A INPUT -s 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 443 -j ACCEPT > -A INPUT -s 10.242.1.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 443 -j ACCEPT > -A OUTPUT -d 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 443 --dport 1:65535 -j ACCEPT > -A OUTPUT -d 10.242.1.0/255.255.255.0 -p tcp -m tcp --sport 443 --dport 1:65535 -j ACCEPT > -A OUTPUT -s ! 127.0.0.0/255.0.0.0 -o lo -p tcp -m tcp --sport 1:65535 --dport 443 -m logmark --logmark 60005 -j LOGDROP > -A AUTO_INPUT -s 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 443 -j CONFIRMED > -A AUTO_INPUT -s 10.242.1.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 443 -j CONFIRMED 15,16c14 < -A USR_FORWARD -s 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 443 -m logmark --logmark 6 -j LOGACCEPT < -A USR_FORWARD -s 68.15.104.34 -i eth1 -p tcp -m tcp --sport 1:65535 --dport 443 -m logmark --logmark 8 -j LOGDROP --- > -A USR_FORWARD -s 192.168.2.0/255.255.255.0 -p tcp -m tcp --sport 1:65535 --dport 443 -j CONFIRMED ace75:/ #