# Block ip
sudo iptables -I INPUT -s xx.xx.xx.xx -j DROP; 
sudo iptables -L -n -v

iptables -n -L -v --line-numbers

sudo iptables -A INPUT -p tcp --dport 80 -j DROP
sudo iptables -A INPUT -i eth1 -p tcp --dport 80 -j DROP

sudo iptables -I INPUT -p tcp --dport 80 -j ACCEPT
sudo iptables -I INPUT -p tcp --dport 443 -j ACCEPT
sudo iptables -A INPUT -j REJECT; sudo iptables -A FORWARD -j REJECT
sudo iptables -A OUTPUT -j ACCEPT; sudo iptables -I INPUT -i lo -j ACCEPT

iptables -A INPUT -i eth0 -p tcp -m multiport --dports 80,443 -m state --state NEW,ESTABLISHED -j ACCEPT

iptables -A OUTPUT -o eth0 -p tcp -m multiport --sports 80,443 -m state --state ESTABLISHED -j ACCEPT