
#Rules for OUTPUT



#mysql firewall eth1 vers dmz (acl 1)
-A IF-DMZ -p tcp --dport 3306 --sport 1024:65535 -s 192.168.33.1 -d 192.168.33.0/25 -m state --state NEW --syn -j ACCEPT  # 1 1


-A IF-INTERNET -j ULOG --ulog-prefix "IF-INTERNET"
-A IF-INTERNET -j DROP

-A IF-DMZ -j ULOG --ulog-prefix "IF-DMZ"
-A IF-DMZ -j DROP

-A IF-INTRANET -j ULOG --ulog-prefix "IF-INTRANET"
-A IF-INTRANET -j DROP

