Smart Firewall Rule
I´m looking for a smart way to define a firewall-rule that stops people from sitting in the localarea network with the internal network interface and at the same time connect to "for example hotspot" with the wireles network interface. Today I´m using a rule that , if the DHCP server ip adres is external and the DNS server ip adres is internal the Security level goes to Strict.
But this is based on that I define the external DHCP adresses that could occur. And thats not the best solution.
Anny tips /ideas would be grateful.