VPF Filtering¶
This recipe uses VPF filter rules to prevent unwanted traffic from entering or exiting TNSR. There is a VPF filter ruleset for each interface.
The rules for this example are identical for both nodes.
Note
The best practice is to have these rules in place before activating services on TNSR so that there is no window where those services are exposed without filtering.
See also
VPF Filtering Configuration