› Forums › Network Management › Firewall, Traffic Shaping and Net Balancer › What are basic firewall settings for home router / gateway? › Reply To: What are basic firewall settings for home router / gateway?
These are the rules I use, taken from one of the contributes on the Document page, note that ETH00 is LAN. Rule 3 I added myself for when I want to let someone ping me from the net, I disable it all the rest of the time.
Select the "INPUT" chain.
Rule #1, click "Add" and set the Input to "ETH00", changing nothing else, and click Confirm. This rule will permit all traffic from the ETH00 LAN to anywhere on the box.
Rule #2, click "Add", and check only "ESTABLISHED" and "RELATED" under
"Connection State", then click Confirm. This rule will permit response traffic from
established connections to the box to wherever they originated.
Rule #3 to be de-activated in everday use:
Add Accept input to ppp0 ICMP type 8 New.
Click "Save" to make the new input rules active.
Then change INPUT CHAIN DEFAULT policy from "ACCEPT" to "DROP"
so the rules actually take affect.
Then test your config at Shields Up
article I mentioned here: 1:1 NAT in ZeroShell