#
# Shorewall -- /etc/shorewall/rules
#
# For information on the settings in this file, type "man shorewall-rules"
#
# The manpage is also online at
# http://www.shorewall.net/manpages/shorewall-rules.html
#
##############################################################################################################################################################
#ACTION		SOURCE		DEST		PROTO	DPORT	SPORT	ORIGDEST	RATE	USER	MARK	CONNLIMIT	TIME	HEADERS	SWITCH	HELPER

?SECTION ALL
?SECTION ESTABLISHED
?SECTION RELATED
?SECTION INVALID
?SECTION UNTRACKED
?SECTION NEW
#ping and traceroute
Ping/ACCEPT     all     all
Trcrt/ACCEPT    all     all

# incomming traffic
ACCEPT  net     fw      tcp     ssh,auth
ACCEPT  net     fw      tcp     www,https
FTP(ACCEPT)	net	fw

# snmp
ACCEPT  net:196.25.198.51     fw      udp     snmp
ACCEPT  net:196.25.198.14     fw      udp     snmp

# Limit outgoing connection rates
Limit:info:SSHOUT,10,120  fw      net     tcp     22
Limit:info:SSHOUT,10,120  fw      net:!196.25.168.3     tcp     25

#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE