If for example eth1 is for WAN and eth2 is for the internal network (as a gateway), what would be the code lines to only allow eth2 to access, through which my whole internal network has access, eth1 for internet use?
The idea being a form of port knock prevention so that only from the inside people can access the internet and from the outside world the computer is sort of none existence, "dead", when not in use.
And of course to counter Spoofing of various kinds.
Pretty much all my ports are closed, so that is not what I am referring to.
I read port knock information about how ports can be "knocked", close ports without daemons or programs listening behind it, and be opened.
This is sort of the question as well.
To explain it in the easiest way, simply make sure the ports can only be opened "one" way, from the inside.
Thank you.
Electric Mini Air Duster Blower Vacuum Cleaner for PC Computer Laptop Dust
$30.95
Electric Vacuum Cleaner Air Duster Suction High Pressure for Computer Car Home
$9.97
Electric Vacuum Cleaner Air Duster Suction High Pressure for Computer Car Home
$10.87
Compressed Air Duster with Air Blower 100000RPM Vacuum Cleaner and Air Duster
$38.99
Mini Computer Vacuum USB Keyboard Cleaner PC Laptop Brush Dust Cleaning Kit US
$13.68
Electric Mini Cordless Air Duster Blower Vacuum Cleaner for Computer/CarCleaning
$17.58
2-In-1 Air Duster & Vacuum 60000 RPM Rechargeable Auto Computer Keyboard USB
$26.95
Portable Cordless Hand Held Vacuum Cleaner Wet Dry Car Auto Home Duster w/ Bag
$24.98
KLIM Cool Laptop Cooler Fan, Portable Quiet Cooling Vacuum w/Display - BLUE LED
$15.95
Vacuum Cleaner Corded INSE I5 18Kpa Powerful Suction 600W Motor Stick Handheld
$175.50