1iptables \ 2-w \ 3-A FJ-vnet0 \ 4-p all \ 5-m state \ 6--state ESTABLISHED,RELATED \ 7-m comment \ 8--comment 'out: existing and related (ftp) connections' \ 9-j RETURN 10iptables \ 11-w \ 12-A HJ-vnet0 \ 13-p all \ 14-m state \ 15--state ESTABLISHED,RELATED \ 16-m comment \ 17--comment 'out: existing and related (ftp) connections' \ 18-j RETURN 19iptables \ 20-w \ 21-A FP-vnet0 \ 22-p all \ 23-m state \ 24--state ESTABLISHED \ 25-m comment \ 26--comment 'in: existing connections' \ 27-j ACCEPT 28iptables \ 29-w \ 30-A FP-vnet0 \ 31-p tcp \ 32--dport 21:22 \ 33-m state \ 34--state NEW \ 35-m comment \ 36--comment 'in: ftp and ssh' \ 37-j ACCEPT 38iptables \ 39-w \ 40-A FP-vnet0 \ 41-p icmp \ 42-m state \ 43--state NEW \ 44-m comment \ 45--comment 'in: icmp' \ 46-j ACCEPT 47iptables \ 48-w \ 49-A FJ-vnet0 \ 50-p udp \ 51--dport 53 \ 52-m state \ 53--state NEW \ 54-m comment \ 55--comment 'out: DNS lookups' \ 56-j RETURN 57iptables \ 58-w \ 59-A HJ-vnet0 \ 60-p udp \ 61--dport 53 \ 62-m state \ 63--state NEW \ 64-m comment \ 65--comment 'out: DNS lookups' \ 66-j RETURN 67iptables \ 68-w \ 69-A FJ-vnet0 \ 70-p all \ 71-m comment \ 72--comment 'inout: drop all non-accepted traffic' \ 73-j DROP 74iptables \ 75-w \ 76-A FP-vnet0 \ 77-p all \ 78-m comment \ 79--comment 'inout: drop all non-accepted traffic' \ 80-j DROP 81iptables \ 82-w \ 83-A HJ-vnet0 \ 84-p all \ 85-m comment \ 86--comment 'inout: drop all non-accepted traffic' \ 87-j DROP 88