On 11/08/2014 12:10 PM, Glenn Kelley wrote: > Butch is not saying something here - so I will for him. BUY HIS > FIREWALL SCRIPT > > well worth its small cost.
While I agree that it is very inexpensive for what it accomplishes, in this thread, I am more interested in the teaching. :-) (honest). Firewall isn't hard at all. What usually eludes the average person is the logical steps necessary to create the set of rules necessary to: 1. Stop a specific threat 2. Allow access to necessary services in a secure fashion (ssh, winbox, telnet, ftp, etc.) 3. Determine the source of a threat to a router or the network 4. Prevent "future threats" with a properly designed application in the firewall My answers in this thread were really intended to show the process of designing the necessary protection for one particular threat and not a complete solution. This is how I run my training as well... -- Butch Evans 702-537-0979 Network Support and Engineering http://store.wispgear.net/ http://www.butchevans.com/ _______________________________________________ Mikrotik-users mailing list [email protected] http://lists.wispa.org/mailman/listinfo/mikrotik-users
