An additional big difference is the final rule which drops all new connection tries from the WAN port to our LAN network (Except if DstNat is utilized). Without having this rule, if an attacker is aware of or guesses your neighborhood subnet, he/she will be able to build connections on https://wbofficial.com
