imchairmanm/gist:af3816fdc288796f019f Secret

## gistfile1.txt
root@hohum:~# iptables -v -L
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination
 2261  157K ACCEPT     all  --  any    any     anywhere             anywhere             ctstate RELATED,ESTABLISHED
    0     0 ACCEPT     all  --  lo     any     anywhere             anywhere
    0     0 ACCEPT     tcp  --  any    any     anywhere             anywhere             tcp dpt:http
    1    60 KNOCKING   all  --  any    any     anywhere             anywhere

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination

Chain OUTPUT (policy ACCEPT 260 packets, 53732 bytes)
 pkts bytes target     prot opt in     out     source               destination

Chain GATE1 (4 references)
 pkts bytes target     prot opt in     out     source               destination
    0     0 DROP       tcp  --  any    any     anywhere             anywhere             tcp dpt:1111 recent: SET name: AUTH1 side: source mask: 255.255.255.255
    0     0 DROP       all  --  any    any     anywhere             anywhere

Chain GATE2 (1 references)
 pkts bytes target     prot opt in     out     source               destination
    0     0            all  --  any    any     anywhere             anywhere             recent: REMOVE name: AUTH1 side: source mask: 255.255.255.255
    0     0 DROP       tcp  --  any    any     anywhere             anywhere             tcp dpt:2222 recent: SET name: AUTH2 side: source mask: 255.255.255.255
    0     0 GATE1      all  --  any    any     anywhere             anywhere

Chain GATE3 (1 references)
 pkts bytes target     prot opt in     out     source               destination
    0     0            all  --  any    any     anywhere             anywhere             recent: REMOVE name: AUTH2 side: source mask: 255.255.255.255
    0     0 DROP       tcp  --  any    any     anywhere             anywhere             tcp dpt:3333 recent: SET name: AUTH3 side: source mask: 255.255.255.255
    0     0 GATE1      all  --  any    any     anywhere             anywhere

Chain KNOCKING (1 references)
 pkts bytes target     prot opt in     out     source               destination
    0     0 PASSED     all  --  any    any     anywhere             anywhere             recent: CHECK seconds: 30 name: AUTH3 side: source mask: 255.255.255.255
    0     0 GATE3      all  --  any    any     anywhere             anywhere             recent: CHECK seconds: 10 name: AUTH2 side: source mask: 255.255.255.255
    0     0 GATE2      all  --  any    any     anywhere             anywhere             recent: CHECK seconds: 10 name: AUTH1 side: source mask: 255.255.255.255
    0     0 GATE1      all  --  any    any     anywhere             anywhere

Chain PASSED (1 references)
 pkts bytes target     prot opt in     out     source               destination
    0     0            all  --  any    any     anywhere             anywhere             recent: REMOVE name: AUTH3 side: source mask: 255.255.255.255
    0     0 ACCEPT     tcp  --  any    any     anywhere             anywhere             tcp dpt:ssh
    0     0 GATE1      all  --  any    any     anywhere             anywhere
	root@hohum:~# iptables -v -L
	Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
	pkts bytes target prot opt in out source destination
	2261 157K ACCEPT all -- any any anywhere anywhere ctstate RELATED,ESTABLISHED
	0 0 ACCEPT all -- lo any anywhere anywhere
	0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:http
	1 60 KNOCKING all -- any any anywhere anywhere

	Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
	pkts bytes target prot opt in out source destination

	Chain OUTPUT (policy ACCEPT 260 packets, 53732 bytes)
	pkts bytes target prot opt in out source destination

	Chain GATE1 (4 references)
	pkts bytes target prot opt in out source destination
	0 0 DROP tcp -- any any anywhere anywhere tcp dpt:1111 recent: SET name: AUTH1 side: source mask: 255.255.255.255
	0 0 DROP all -- any any anywhere anywhere

	Chain GATE2 (1 references)
	pkts bytes target prot opt in out source destination
	0 0 all -- any any anywhere anywhere recent: REMOVE name: AUTH1 side: source mask: 255.255.255.255
	0 0 DROP tcp -- any any anywhere anywhere tcp dpt:2222 recent: SET name: AUTH2 side: source mask: 255.255.255.255
	0 0 GATE1 all -- any any anywhere anywhere

	Chain GATE3 (1 references)
	pkts bytes target prot opt in out source destination
	0 0 all -- any any anywhere anywhere recent: REMOVE name: AUTH2 side: source mask: 255.255.255.255
	0 0 DROP tcp -- any any anywhere anywhere tcp dpt:3333 recent: SET name: AUTH3 side: source mask: 255.255.255.255
	0 0 GATE1 all -- any any anywhere anywhere

	Chain KNOCKING (1 references)
	pkts bytes target prot opt in out source destination
	0 0 PASSED all -- any any anywhere anywhere recent: CHECK seconds: 30 name: AUTH3 side: source mask: 255.255.255.255
	0 0 GATE3 all -- any any anywhere anywhere recent: CHECK seconds: 10 name: AUTH2 side: source mask: 255.255.255.255
	0 0 GATE2 all -- any any anywhere anywhere recent: CHECK seconds: 10 name: AUTH1 side: source mask: 255.255.255.255
	0 0 GATE1 all -- any any anywhere anywhere

	Chain PASSED (1 references)
	pkts bytes target prot opt in out source destination
	0 0 all -- any any anywhere anywhere recent: REMOVE name: AUTH3 side: source mask: 255.255.255.255
	0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:ssh
	0 0 GATE1 all -- any any anywhere anywhere