Sure. The easiest way is to add rules for the systems you want to allow and then use a rule at the end to drop everything else that isn't matched (or just make your default INPUT policy DROP or REJECT. So to give you an example, if I want to allow 192.168.0.1 and the range 10.10.10.0-10.10.10.255 I'd use:
Code:
iptables -A INPUT -s 192.168.0.1/32 -j ACCEPT
iptables -A INPUT -s 10.10.10.0/24 -j ACCEPT
iptables -A INPUT -j REJECT
or alternatively:
Code:
iptables -P INPUT REJECT
iptables -A INPUT -s 192.168.0.1/32 -j ACCEPT
iptables -A INPUT -s 10.10.10.0/24 -j ACCEPT
Those are obviously rudimentary examples and you'll need more rules for a functioning firewall. If you want to allow just the U.S. that might be a bit more tricky, specifically finding a list of which IPs are specific to the US. I think I've seen similar lists like that before but I don't remember where. You may have some luck on google though.