Trying to figure out the best way to block inbound access to our UTM's, We get some portscans on a regular basis, ive created a DNAT at the bottom rule and put them in here. But im sure we getting same Ips repeated in scans so not 100% sure if this is working.
as a test I Blocked my mobile phone IP (on 3G) and I could still access the UTM published websites etc. Looked at the current DNAT rule and it appears ok. Created a new DNAT rule for my phone IP and this did not work either. Also tried creating manual firewall rules but this did not work, so it maybe still allowing me to access sites even if blocked.
Is there a simple way to block an IP inbound from accessing anything, be it doing a portscan or accessing a published website.
Thanks.
This thread was automatically locked due to age.