Simple script to iptables, the configuration is in json format

Services TCP & UDP depends on the police used

Police:
 paranoid : All TCP SYN and UDP closed only open in the services specified
 server   : All is closed TCP and UDP only low ports
 open     : All open and only services specfied are closed
 neutral  : Nothing to do.. nifu nifa
 intranet : All connections are welcome to the specific dev only
 secure   : All ports are syn closed and only open the services

Services   : Ports in used ( depending of the police )
Redirect   : Redirect port to another ip:port
Limits     : Limits port connections/times
block_from : Block port TCP/UDP from IP
block_country : Block Range IP of a Country

Forward    : Enable forwarding
 tproxy    : Transparent proxy

secure :
 block_tor : Block TOR Network

iptables chains
 - blacklist-ip
 - admin-ip               : Allow only connections to this IPs
 - block-country-iso_code : One chain per country
 - block-tor

iptables -t nat -L -n -v

pfire read in the next order for the config file first read enviroment 'PFIRE' and last check ARGV[0] 
the specified file could be a local file or http