RouterOS Firewall Rule Ordering — Sequential, Not Priority-Based Rules are evaluated top-to-bottom — first match wins. This is the biggest source of iptables confusion. - inserts at the top; default appends at the bottom - An rule must appear BEFORE any for the same traffic - Non-terminal actions do NOT stop evaluation: , , , and any rule with continue to the next rule. A rule below an will still fire. Address-Lists as Dynamic Selectors LLMs rarely suggest this pattern — they write one rule per IP address instead. Address-lists scale to hundreds of IPs with a single firewall rule. Dynamic ent…