is this right?
#dialog --msgbox "Cleaning the current policy" 5 50
iptables -F
#dialog --msgbox "Blocking all internal packges" 5 50
iptables -A FORWARD -i eth0 -j DROP
#dialog --msgbox "Blocking IPUNT for: 25, 111, 515,587,3306,6000" 6 50
iptables -A INPUT -i eth0 -p tcp --dport 25 -j DROP
iptables -A INPUT -i eth0 -p tcp --dport 111 -j DROP
iptables -A INPUT -i eth0 -p tcp --dport 515 -j DROP
iptables -A INPUT -i eth0 -p tcp --dport 587 -j DROP
iptables -A INPUT -i eth0 -p tcp --dport 3306 -j DROP
or shoul I do the reverse? block all and allow the ones I am using.