#!/bin/bash
#
# Small shell script to add iptable rules to block access to default irc ports

IP=/sbin/iptables

	# Input rules
	$IP -A INPUT -p tcp --dport 6500:7500 -j DROP
	$IP -A INPUT -p udp --dport 6500:7500 -j DROP

	# Outgoing rules
	$IP -A OUTPUT -p tcp --dport 6500:7500 -j DROP
	$IP -A OUTPUT -p udp --dport 6500:7500 -j DROP

	# Forwarding rules - this blocks the traffic to individual VE's
	$IP -A FORWARD -p tcp --dport 6500:7500 -j DROP
	$IP -A FORWARD -p tcp --dport 6500:7500 -j DROP