taskstart on x1scriptiptables -Fiptables -P FORWARD DROPiptables -A

1. task
2. start on x1
3.  
4. script
5. iptables -F
6. iptables -P FORWARD DROP
7. iptables -A OUTPUT -p all -m owner --uid-owner lu -j DROP
8. iptables -P OUTPUT ACCEPT
9. iptables -A INPUT -p tcp --dport ssh -j DROP
10. iptables -I INPUT 1 -i lo -j ACCEPT
11. iptables -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
12. iptables -A INPUT -p tcp --dport 80 -j ACCEPT
13. iptables -A INPUT -j DROP
14. end script
15.  
16. console output