From b84e97df556cd642af7003601dc5dc51165f098a Mon Sep 17 00:00:00 2001
From: Ferexio <ferexio@andrzejszczepaniak.co.uk>
Date: Tue, 1 Mar 2022 18:43:44 +0000
Subject: [PATCH] Working, but not for bifrost...

---
 firewall_ferexio_version.sh | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/firewall_ferexio_version.sh b/firewall_ferexio_version.sh
index 9b0fca6..9488796 100644
--- a/firewall_ferexio_version.sh
+++ b/firewall_ferexio_version.sh
@@ -1,6 +1,8 @@
 #!/bin/bash
 apt install ipset
 
+IP2=$(ifconfig | grep eth0 -A 1 | grep inet | awk {'print $2'})
+
 iptables -F
 iptables -t nat -F
 iptables -t mangle -F
@@ -25,6 +27,12 @@ ss -tunlp | grep LISTEN | awk {'print $5'} | sed 's/.*://' | sort | uniq > /tmp/
 for IP in $(cat /tmp/portyotwarte.txt); do iptables -A INPUT -p udp --dport $IP -j ACCEPT; done
 for IP in $(cat /tmp/portyotwarte.txt); do iptables -A INPUT -p tcp --dport $IP -j ACCEPT; done
 
+iptables -A INPUT -i lo -j ACCEPT
+iptables -A OUTPUT -o lo -j ACCEPT
+
+iptables -A INPUT -s $IP2 -j ACCEPT
+iptables -A OUTPUT -d $IP2 -j ACCEPT
+
 iptables -A INPUT -j DROP
 iptables -A FORWARD -j DROP