I’m used to Sonicwalls at work and their rules, so my confusion is on how to give each interface no access to each other and have full access outbound to WAN.
I’ve tried the following rules:
Source:
OPT1 Subnets, OPT1 Address, Network
Destination: WAN Address, WAN Subnets, This Firewall
I know this is probably really simple and I’m just overlooking something stupid.
Here is a sample if I want to block anything from VIDEONETWORK (interface) to LAN.
You can do invert match too (where you set an alias). For example, you have a set of networks that you want to block, list them in an alias, and set the destination as invert match to the Address or Alias.