Hello,
When you enable a static IP, you increase your vulnerability to unknown attacks. However, there are steps you can take to reduce this risk:
- Block incoming traffic from the WAN on Port 53: To do this, create a traffic rule that drops incoming traffic to Port 53. You can create rules in Network → Firewall → Traffic rules. The rule itself should look like this:
- Strengthen your security with Attack Prevention services. These can be accessed via Network → Firewall → Attack Prevention. SYN flood and ICMP request protection are enabled by default, but you can adjust limits. Additionally, you can turn on Port Scanning Prevention as well as protection for SSH, HTTP, and HTTPS.
Best regards,