diff --git a/sec/basics.png b/sec/basics.png
new file mode 100644
index 0000000..620ec31
Binary files /dev/null and b/sec/basics.png differ
diff --git a/sec/ex-4_iptables.adoc b/sec/ex-4_iptables.adoc
new file mode 100644
index 0000000..f995545
--- /dev/null
+++ b/sec/ex-4_iptables.adoc
@@ -0,0 +1,89 @@
+= Iptables with shorewall!
+Apostolos rootApostolos@swarmlab.io
+// Metadata:
+:description: Intro and Install
+:keywords: sec, tcpdump
+:data-uri:
+:toc: right
+:toc-title: Πίνακας περιεχομένων
+:toclevels: 4
+:source-highlighter: highlight
+:icons: font
+:sectnums: 
+
+include::header.adoc[]
+
+
+{empty} +
+
+
+[[cheat-Docker]]
+== Install swarmlab-sec (Home PC)
+
+HowTo: See http://docs.swarmlab.io/lab/sec/sec.adoc.html
+
+
+.NOTE
+[NOTE]
+====
+Assuming you're already logged in
+====
+
+
+
+== shorewall
+
+
+**Shorewall** is an open source firewall tool for Linux that builds upon the Netfilter (iptables/ipchains) system built into the Linux kernel, making it easier to manage more complex configuration schemes by providing a higher level of abstraction for describing rules using text files. 
+
+https://en.wikipedia.org/wiki/Shorewall[More: wikipedia]
+
+
+=== Installation
+
+Shorewall is already installed on swarmlab-sec. 
+
+
+== Basic Two-Interface Firewall
+
+
+basics.png[Basic Two-Interface Firewall]
+
+
+
+.connect to master first
+[NOTE]
+====
+
+Assuming you're already logged in master!
+
+swarmlab-sec login 
+====
+
+
+
+
+
+
+:hardbreaks:
+
+{empty} +
+{empty} +
+{empty} 
+
+:!hardbreaks:
+
+'''
+
+.Reminder
+[NOTE]
+====
+:hardbreaks:
+Caminante, no hay camino, 
+se hace camino al andar.
+
+Wanderer, there is no path, 
+the path is made by walking.
+
+*Antonio Machado* Campos de Castilla
+====