Per my prior post, here's the second part of my configuration:
name WAN_LOCAL {
default-action drop
description "WAN to router"
rule 10 {
action accept
description "Allow established/related"
state {
established enable
related enable
}
}
rule 20 {
action accept
description "Allow 72.13.6.209 "
log enable
protocol all
source {
address 72.13.6.0/24
}
state {
established enable
invalid disable
new enable
related enable
}
}
rule 30 {
action drop
description "Drop invalid state"
state {
invalid enable
}
}
rule 40 {
action accept
description "Allow Ping"
destination {
group {
address-group ADDRv4_eth0
}
}
log disable
protocol icmp
}
}
receive-redirects disable
send-redirects enable
source-validation disable
syn-cookies enable
}
interfaces {
ethernet eth0 {
address 64.60.51.130/28
description "Internet - WAN"
duplex auto
firewall {
in {
name WAN_IN
}
local {
name WAN_LOCAL
}
}
speed auto
}
ethernet eth1 {
address 96.31.229.154/30
description "Internet - WAN 2"
duplex auto
firewall {
in {
name WAN_IN
}
local {
name WAN_LOCAL
}
}
speed auto
}