Great!I didn't test it, but this looks ok: viewtopic.php?f=9&t=161785
What exactly do you mean? What would you do in such a situation?Can one not use REDIRECT in the dstnat ruleset??
Ok thank you very muchI will comment only on the rule...
Yes it will drop any TCP connection originated from anyone inside the LAN, not only your PC, towards that IP...
Ah ok,Yes thats what i meant...
I can't give it a go now, but what would the result be? Would I get an IP on the same subnet of my WAN (ISP router LAN subnet)?Create a bridge interface and add the eth interface as well as the wirelles one...
How? ThanksYes you can...
Thank you very much indeedYes, correct.
making my LAN work on the same subnet and avoid double NAT.What would you like to achieve in the end?
I'd like to know whether my rule above is correct to just give it a try.How can I make that determination without seeing your config...................
Ok, but I would like to drop requests from my LAN to Internet too, and understand if my rule above would be oktry grc.com and their shields up tool to see what is visible from the internet.
I think you're right.No, it's not good starting point, current default firewall is better for that, it's simpler, easier to understand, ...
No it just means that we already made the same mistake and learned LOL
PS -I figured this one out before Sob. I am going to have a Corona......oops a Stella.
I can't drag rules via Winbox on my PC either.Yes, you can drag rules, it works. Except maybe when you use WinBox on Mac, I don't do it myself, but I think I've noticed some complaints about that somewhere in this forum.
Sorry, I don't think I've understood what you mean.There is no such thing as backup DNS server.