Hello All,
just thinking of visualizing the firewall structure what currently runs. (see attached pdf)
With this every port is closed, there is only 1 way to get in from WAN: first: knock-knock in the right order and time so the knocking IP gets whitelisted for a limited time. Then an L2TP tunnel can be opened so the road warrior gets into.
Do you see any problems/holes in this? or Do you have any best practices for general firewall structure?
Thanks,
Dasi
