It would be nice if the interface of the firewall would be more granular. Splitting firewall entries for LAN and WAN (here eth0 and bond0) is necessary if you have a perfect server in you company and not in a datacenter. best regards chico
