#
# Shorewall version 4 - Policy File
#
# For information about entries in this file, type "man shorewall-policy"
#
# The manpage is also online at
# http://www.shorewall.net/manpages/shorewall-policy.html
#
###############################################################################
#SOURCE	DEST	POLICY		LOGLEVEL	RATE		CONNLIMIT
$FW	all	ACCEPT

vpn0	$FW	ACCEPT		$LOG_LEVEL

hom	$FW	ACCEPT		$LOG_LEVEL
hom	int	ACCEPT		$LOG_LEVEL
hom	ip6	ACCEPT		$LOG_LEVEL
hom	ip4	ACCEPT		$LOG_LEVEL
int	hom	ACCEPT		$LOG_LEVEL

ixp	hom	DROP		$LOG_LEVEL

int	drt	ACCEPT
ip4	ixp	ACCEPT

drt	$FW	DROP

ip4	hom	ACCEPT
ip6	hom	ACCEPT

drt	all	DROP		$LOG_LEVEL
ixp	all	DROP #		$LOG_LEVEL
int	all	DROP		$LOG_LEVEL
ip6	all	DROP		$LOG_LEVEL
ip4	all	DROP		$LOG_LEVEL
ha	all	DROP		$LOG_LEVEL
vpn0	all	DROP		$LOG_LEVEL

all	all	DROP