One more big difference is the final rule which drops all new connection makes an attempt from the WAN port to our LAN community (unless DstNat is utilised). Without having this rule, if an attacker is familiar with or guesses your local subnet, he/she will be able to set up https://wbofficial.com
