#!/bin/bash
#Copyright 2004 William Stearns <wstearns@pobox.com>
#Released under the GPL
#Automatically generated by Modwall, http://www.stearns.org/modwall/

#==== Brick specific help ====
#	The udpchk module checks for low port (0-21) traffic.  These rules
#should be safe to use in any network.

/usr/bin/sudo /sbin/iptables -N udpchk
/usr/bin/sudo /sbin/iptables -A udpchk -p udp --sport 0:21 -j DROP
/usr/bin/sudo /sbin/iptables -A udpchk -p udp --dport 0:21 -j DROP
/usr/bin/sudo /sbin/iptables -A INPUT -i ! lo -p udp -j udpchk
/usr/bin/sudo /sbin/iptables -A FORWARD -p udp -j udpchk
/usr/bin/sudo /sbin/iptables -A OUTPUT -p udp -j udpchk