Do i really need the last three iptables calls? I think they do the same like the first five calls and could be removed, but i am not sure...
finish_rules() { iptables -N CATCH-ALL iptables -A OUTPUT -j CATCH-ALL iptables -A INPUT -j CATCH-ALL iptables -A FORWARD -j CATCH-ALL iptables -A CATCH-ALL -j DROP
iptables -A INPUT -j DROP
iptables -A OUTPUT -j DROP
iptables -A FORWARD -j DROP
}-- Greetings Bjoern Schmidt
