Chain INPUT (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 ACCEPT     esp  --  eth0   *       0.0.0.0/0            0.0.0.0/0           
    2  1296 ACCEPT     udp  --  eth0   *       0.0.0.0/0            0.0.0.0/0           udp spt:500 dpt:500 
    4  4416 ACCEPT     udp  --  eth0   *       0.0.0.0/0            0.0.0.0/0           udp spt:4500 dpt:4500 
   18  3041 ACCEPT     tcp  --  eth0   *       192.168.0.150        0.0.0.0/0           tcp spt:389 
  502 73969 ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp dpt:22 

Chain FORWARD (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 ACCEPT     all  --  eth0   *       192.168.0.200        10.1.0.20           policy match dir in pol ipsec reqid 3 proto 50 
    0     0 ACCEPT     all  --  *      eth0    10.1.0.20            192.168.0.200       policy match dir out pol ipsec reqid 3 proto 50 
    0     0 ACCEPT     all  --  eth0   *       192.168.0.100        10.1.0.10           policy match dir in pol ipsec reqid 1 proto 50 
    0     0 ACCEPT     all  --  *      eth0    10.1.0.10            192.168.0.100       policy match dir out pol ipsec reqid 1 proto 50 

Chain OUTPUT (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 ACCEPT     esp  --  *      eth0    0.0.0.0/0            0.0.0.0/0           
    2  1050 ACCEPT     udp  --  *      eth0    0.0.0.0/0            0.0.0.0/0           udp spt:500 dpt:500 
    4  3440 ACCEPT     udp  --  *      eth0    0.0.0.0/0            0.0.0.0/0           udp spt:4500 dpt:4500 
   27  1836 ACCEPT     tcp  --  *      eth0    0.0.0.0/0            192.168.0.150       tcp dpt:389 
  556  214K ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           tcp spt:22