I want one particular machine not be reachable by internet, but be connected to all other machines. It is going to be my SIEM. I think if I give it the wrong gateway address, them it could be done. But what about outsiders using source routed packets? Then it could still be reachable, no?
Found out about the registry key HKLM \ System \ CurrentControlSet \ Services \ TCPIP \ Parameters \ DisableIPSourceRouting dword 1 . I guess that could take care of the problem, no?