I would like to connect two ZS boxes together across the internet with two bonded ADSL links (bonded VPN’s). I have set these up in my lab and connected together with cross-over cables and have it all working. Can you please help me to setup some firewall rules to stop all traffic except the VPN links between the boxes (e.g. stop all public traffic from the internet & force all internal traffic to the bond link.) I just want to be sure that the public interfaces (ETH01 & ETH02) are secure at both ends and only allow the VPN’s to connect. No other traffic is required other than the bonded VPN link.