diff -ruN owl-startup.orig/etc/init.d/network owl-startup/etc/init.d/network
--- owl-startup.orig/etc/init.d/network	2012-05-07 01:38:20 +0400
+++ owl-startup/etc/init.d/network	2012-08-13 13:13:13 +0400
@@ -10,6 +10,10 @@
 # Source function library.
 . /etc/rc.d/init.d/functions
 
+if [ -x /etc/rc.d/rc.network ]; then
+    exec /etc/rc.d/rc.network $*
+fi
+
 if [ ! -f /etc/sysconfig/network ]; then
     exit 0
 fi
diff -ruN owl-startup.orig/etc/rc.d/rc.network owl-startup/etc/rc.d/rc.network
--- owl-startup.orig/etc/rc.d/rc.network	1970-01-01 03:00:00 +0300
+++ owl-startup/etc/rc.d/rc.network	2012-08-13 13:48:48 +0400
@@ -0,0 +1,15 @@
+#!/bin/sh
+
+test "$1" = "start" || exit
+
+#ip link set dev eth0 up
+#vconfig add eth0 10
+#ip link set dev eth0.10 up
+#brctl addbr br0
+#brctl addif br0 eth0.10
+#ip link set dev br0 up
+#ip address add 10.20.30.40/24 dev br0
+#ip route add default via 10.20.30.1
+
+test -x /etc/rc.d/rc.firewall && /etc/rc.d/rc.firewall
+
diff -ruN owl-startup.orig/etc/rc.d/rc.firewall owl-startup/etc/rc.d/rc.firewall
--- owl-startup.orig/etc/rc.d/rc.firewall	1970-01-01 03:00:00 +0300
+++ owl-startup/etc/rc.d/rc.firewall	2012-08-13 13:50:50 +0400
@@ -0,0 +1,26 @@
+#!/bin/sh
+
+iptables -t raw -F
+iptables -t raw -X
+iptables -t filter -F
+iptables -t filter -X
+iptables -t nat -F
+iptables -t nat -X
+
+iptables -t filter -P INPUT ACCEPT
+iptables -t filter -P OUTPUT ACCEPT
+iptables -t filter -P FORWARD DROP
+
+iptables -t filter -A FORWARD -i venet0 -j ACCEPT
+iptables -t filter -A FORWARD -o venet0 -j ACCEPT
+iptables -t filter -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
+
+# Protect SSH against password bruteforcing
+iptables -t filter -A INPUT -p tcp --syn --dport 22 -m recent \
+ --update --seconds 60 --hitcount 5 -j REJECT --reject-with tcp-reset
+iptables -t filter -A INPUT -p tcp --syn --dport 22 -m recent --set
+
+# Simple NAT example for generic LAN
+#iptables -t filter -A FORWARD -i eth0 -m state --state NEW -j ACCEPT
+#iptables -t nat -A POSTROUTING -o ppp0 -m state --state NEW -j MASQUERADE
+