1 #!/bin/sh
2
3 # Only run once (not for every interface)
4 if [ "$IFACE" != "--all" ]
5 then
6 exit 0
7 fi
8
9 # only allow ssh connections on eth0 (host only)
10 iptables -A INPUT -i eth0 -p tcp --dport 22 -j ACCEPT
11 iptables -A INPUT -p tcp --dport 22 -j REJECT