summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--shell/etc/ipt/ipv4-shield-1.rules10
1 files changed, 10 insertions, 0 deletions
diff --git a/shell/etc/ipt/ipv4-shield-1.rules b/shell/etc/ipt/ipv4-shield-1.rules
new file mode 100644
index 00000000..c879311d
--- /dev/null
+++ b/shell/etc/ipt/ipv4-shield-1.rules
@@ -0,0 +1,10 @@
+*filter
+:INPUT DROP [0:0]
+:FORWARD DROP [0:0]
+:OUTPUT ACCEPT [0:0]
+
+-AINPUT -m state --state RELATED,ESTABLISHED -jACCEPT
+
+-AINPUT -i lo -jACCEPT
+
+COMMIT
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-31 21:05:25 +0000