Please forgive my ignorance.
I am looking this article here:
Maybe 1/2 way down the page, they start talking about the firewall. The text reads:
The following example firewall is just very basic (and not necessarily recommended). Basically this allow any traffic from LAN, WLAN or the router to be initiated out to Internet, but drop all traffic initiated from Internet.
Before we jump into the example we should first discuss the EdgeOS firewall terminology for IN, OUT, and LOCAL. Applying a firewall ruleset to the INfirewall of an interface affect traffic inbound on that interface but only the traffic forwarded through the router. OUT is traffic that has been forwarded through the router and about to leave exit out the interface. LOCAL is traffic destined for the router (for example if you wanted to use the web UI on the router you'd need to allow port 443 on LOCAL. In terms of using IN or OUT rules, some will say that IN is better because if you're going to drop a packet it's better to do it on input rather than go through the full packet processing path only to drop it before it leaves the router.
First we'll use the 'Add Ruleset' to create the WAN_IN and WAN_LOCAL Rulesets
Then he has this image:
One part says WAN_IN, packets from the internet to the LAN & WLAN.
The other part says WAN_LOCAL, packets from the internet to the router.
Since the LAN & WLAN are also part of the router, aren't both really packets from the internet to the router?
I really hope someone can help me understand this.
Thanks!