Hello,
I have a problem to solve:
I have a small network, up to 5pc
First of all, I can not use hotspot functionality.
In order to block traffic/communication coming from local IPs that are not allowed to do so, I created simple filter rule:
It works fine, but…disallowed IP can ping gateway and allowed IP.
My question is: how to improve it, so malicious person will not have
any chance do discover my network structure, and in addition to this have no chance to get the Internet access without my intervention.
off course, hotspot running by DHCP methode, you can make many IPs [Dynamic] together on your router, if dissallowe you must make binding ip for access dynamic IPs in same subnet...
Hello,
I know Hotspot could have been the best solution, but as I mentioned
previously, I can not set up this functionality. It is wired, when I set up and start Hotspot, everything works fine. But after 2-5hrs some strange actions occur, e.g. 3-4clients have the same IP (I set them up in hs-binding section)
normally it could not happen. I also excluded the malware/trojan/virus effect.
So in my humble opinion it is connectivity issue (maybe switch/maybe something else) and now I can not resolve it, because it would take too much time, so I decided to resolve it with filtering rules.
any other ideas?
yes, if you are with tranparant network setup make sure for critical security platform of operting system and antivirus program must be updated, last time ago we has like you...
hello
in addition to this, it is also possible to limit unwanted access
by setting the simple queue to 1/1 for specific IP or netmask,
this surely will discourage any daredevil.