Hi, i have a ISP Config 3.0.5.4 Server with to network adapters attached. One is for 192.168.1.X (bond0) the other is for WAN with static IP (eth0). Now i want to block SSH for WAN and allow SSH (port 22) only on LAN. Also i want to do this for some other ports. The firewall is the Bastille firewall from ISP Config. What changes i have to do and where i have to do these changes? When i manually edit /etc/Bastille/bastille-firewall.cfg TRUSTED_IFACES="lo" # MINIMAL/SAFEST PUBLIC_IFACES="eth+ ppp+ slip+ venet+ bond+" # SAFEST INTERNAL_IFACES="" # SAFEST to TRUSTED_IFACES="lo bond+" # MINIMAL/SAFEST PUBLIC_IFACES="eth+ ppp+ slip+ venet+" # SAFEST INTERNAL_IFACES="" # SAFEST all ports are closed on WAN and all ports are opened on LAN. Best regards Chico11mhbit