I’m currently using a single rule to DROP groups of subnets (incoming). This is a pain to manange, as I need to add the name, subnet, mask, desc each time I need to add a new subnet in. Is there a better way to do this?
No, I do not think so.
The best way, because it is the most tidy one, is to manage a group and block packets based on that.
Ok thanks for the that