-A OUTPUT -p TCP --dport 80 -j ACCEPT -A OUTPUT -p TCP --sport 80 -j ACCEPT -A OUTPUT -j REJECT --reject-with icmp-port-unreachable