Host based Firewall
Hosts that use an additional LAN interface to enable remote access shall enable the internal firewall on this interface. Only the ports and protocols required for the remote access shall be permitted. If possible, the source and destination address of packets should also be restricted. More information on firewall settings can be found in a specific application note specific to this subject.
Attention to access control. Risk of equipment damage!
Non-observance of security measures conceals security risks. Therefore:
→ Deny inbound connections by default.
→ Document all firewall rules clearly.
→ Configure the firewall to log blocked traffic.