Dynamic handle configuration is the best selection. Only put in place a DHCP consumer on the public interface.The first rule accepts packets from already established connections, assuming These are Risk-free to not overload the CPU. The second rule drops any packet that relationship monitoring identifies as invalid. After that, we setup typical set