Lockdown  

---

 
The lockdown rule protect your firewall, denying any traffic to it.  This rule is critical, as this is one of the primary resources you need to protects.  Some people mistakenly call this the "ghosting" or "stealth" rule, thinking it hides the firewall.  There is no true way to hide your firewall, sooner or later that will be discovered.  There are too many tools and techniques out there designed specifically for identifying firewalls. Notice how this rule is placed before the Internal Outbound rule.  Positioning is critical.  If this rule was after, then anyone on the internal network would have access to the firewall, because the Internal Outbound rule would match first.  This is the first of many rules where positioning is critical.