#!/bin/bash
#Copyright 2004 William Stearns <wstearns@pobox.com>
#Released under the GPL
#Automatically generated by Modwall, http://www.stearns.org/modwall/

#==== Brick specific help ====
#	The lockdown module completely blocks all traffic going in, out or
#through the machine.  It is designed to go at the top of the ruleset,
#blocking all traffic while the network interfaces, routing tables, and
#firewall rules are being set up.  Once those are all in place, the
#lockdown module can be shut down, allowing traffic to flow normally.

/usr/bin/sudo /sbin/iptables -N lockdown
/usr/bin/sudo /sbin/iptables -A lockdown -j DROP
/usr/bin/sudo /sbin/iptables -I INPUT -i ! lo -j lockdown
/usr/bin/sudo /sbin/iptables -I FORWARD -j lockdown
/usr/bin/sudo /sbin/iptables -I OUTPUT -j lockdown