network/salt/upstream/iptables

8 lines
205 B
Bash

#!/bin/sh
if [ "$IFACE" = "{{ interface }}" ]; then
iptables -A INPUT -i "$IFACE" -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A INPUT -i "$IFACE" -j DROP
iptables -P INPUT ACCEPT
fi