ft@0: #!/bin/sh
ft@0: 
ft@0: # Only run once (not for every interface)
ft@0: if [ "$IFACE" != "--all" ]
ft@0: then
ft@0: 	exit 0
ft@0: fi
ft@0: 
ft@0: # only allow ssh connections on eth0 (host only)
ft@0: iptables -A INPUT -i eth0 -p tcp --dport 22 -j ACCEPT
ft@0: iptables -A INPUT -p tcp --dport 22 -j REJECT