#!/bin/sh
# Begin $rc_base/init.d/iptables

#$LastChangedBy: bdubbs $
#$Date: 2005-03-13 00:24:56 -0700 (Sun, 13 Mar 2005) $

. /etc/sysconfig/rc
. $rc_functions

case "$1" in
	start)
        if [ -x /etc/rc.d/rc.iptables ]; then
		  echo "Starting iptables..."
		  loadproc /etc/rc.d/rc.iptables
        fi
		;;

	lock)
		echo "Locking system iptables firewall..."
		/sbin/iptables --policy INPUT   DROP
		/sbin/iptables --policy OUTPUT  DROP
		/sbin/iptables --policy FORWARD DROP
        /sbin/iptables           --flush
        /sbin/iptables -t nat    --flush
        /sbin/iptables -t mangle --flush
        /sbin/iptables           --delete-chain
        /sbin/iptables -t nat    --delete-chain
        /sbin/iptables -t mangle --delete-chain
        /sbin/iptables -A INPUT  -i lo -j ACCEPT
        /sbin/iptables -A OUTPUT -o lo -j ACCEPT
		;;

	clear)
        echo "Clearing system iptables iptables..."
		/sbin/iptables --policy INPUT   ACCEPT
		/sbin/iptables --policy OUTPUT  ACCEPT
		/sbin/iptables --policy FORWARD ACCEPT
        /sbin/iptables           --flush
        /sbin/iptables -t nat    --flush
        /sbin/iptables -t mangle --flush
        /sbin/iptables           --delete-chain
        /sbin/iptables -t nat    --delete-chain
        /sbin/iptables -t mangle --delete-chain
		;;

	status)
		/sbin/iptables           --numeric --list
		/sbin/iptables -t nat    --numeric --list
		/sbin/iptables -t mangle --numeric --list
		;;

	*)
		echo "Usage: $0 {start|clear|lock|status}"
		exit 1
		;;
esac

# End $rc_base/init.d/ntp
