I am trying to setup a firewall on our remote devices, each remote site is using EoIP, IPSec, MPLS, VPLS and OSPF back to two main offices IPs. I've looked at some of the manuals/wiki's and understand some of it, but I'm quite over whelmed. Any help would be greatly appreciated. Here is what I'd like to do:
1) Allow Winbox only from remote IPs 24.xxx.xxx.xxx and 74.xxx.xxx.xxx
2) Allow icmp from anywhere
3) Allow EOIP and IPSec from the two IPs listed above
4) Allow NAT from Internal DHCP Range
5) Block Everything Else
Thanks in advance!