> I am trying to write my first ruleset for router and firewall, how can I
> trim the ruleset?
> block return# block stateless traffic
> pass# establish keep-state
> block all
Apart from all the others suggestions you already got, I think having
block, pass, block in a row allow
On 2025-04-28, Sha'ul wrote:
> I am trying to write my first ruleset for router and firewall, how can I
> trim the ruleset?
>
> set skip on lo
>
> block return# block stateless traffic
> pass# establish keep-state
>
> # By default, do not permit remote connections to X11
> block re
Hi,
I would start by naming your internal interface variables in a meaningful way.
It would make things much more readable for yourself and reduce the risk of a
mental mistake.
Eg:
int_lan1
int_lan2
int_dmz
And similarly with int_net1.
Just a thought...
Cheers,
Steve W
On April 27, 2025 5
On Sun, Apr 27, 2025, at 7:25 PM, Sha'ul wrote:
> I am trying to write my first ruleset for router and firewall, how can I
> trim the ruleset?
>
> set skip on lo
>
> block return# block stateless traffic
> pass# establish keep-state
>
> # By default, do not permit remote connections
4 matches
Mail list logo
