disable ip forwarding not over egress

roles/router/tasks/main.yml

@@ -35,6 +35,13 @@
   notify: Save iptables rules
 
 
+- name: Drop traffic not going over egress interface
+  ansible.builtin.iptables:
+    chain: FORWARD
+    jump: DROP
+  notify: Save iptables rules
+
+
 - name: Enable IP forwarding
   ansible.posix.sysctl:
     name: net.ipv4.ip_forward