#
# Shorewall version 4 - Rules File
#
# For information on the settings in this file, type "man shorewall-rules"
#
# The manpage is also online at
# http://www.shorewall.net/manpages/shorewall-rules.html
#
####################################################################################################################################################
#ACTION		SOURCE		DEST		PROTO	DEST	SOURCE		ORIGINAL	RATE		USER/	MARK	CONNLIMIT	TIME
#							PORT	PORT(S)		DEST		LIMIT		GROUP
#SECTION ESTABLISHED
#SECTION RELATED
SECTION NEW

#       Accept SSH connections from the local network / internet
SSH/ACCEPT      loc             $FW
SSH/ACCEPT      net             $FW

#       Rules for Skynet
Web/ACCEPT      $FW             net
SMTP/ACCEPT     $FW             net:129.7.235.3
SMTP/ACCEPT     net:129.7.235.3 $FW
Whois/ACCEPT    $FW		net:193.0.0.135
Whois/ACCEPT    $FW             net:192.149.252.44
ACCEPT          loc             $FW            udp     67,68

# Not allowing ping from internet but from local net and preventing the log from being flooded..
Ping/DROP       net             $FW
Ping/ACCEPT     loc             $FW
ACCEPT          $FW             loc             icmp
ACCEPT          $FW             net             icmp

#       Accept DNS connections from the local net to the firewall, vice-versa
DNS/ACCEPT      loc             $FW
DNS/ACCEPT      $FW             net

#       Allow Remote Desktop to Tor from internet
DNAT            net             loc:192.168.101.10 tcp 3389 - 129.7.228.110

#       Allow FTP to Tor
DNAT            net             loc:192.168.101.10 tcp 21 - 129.7.228.110
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
