Hi, sorry for that question, but i seem not to get it. I want to block all outgoing traffic and allow it manualy. So far so good. I made rules for green clients to red network. But the problem are the internal DOT-Servers, they can not go outside. So i made rules for them: from red firewall wi…

ok, i got it! it was not NAT, but the source port. The field must be empty, than it just takes any source port.

Allow DNS by blocking the rest outgoing connections

anon33261557 19 December 2020 21:08 18

Can you remember the copy and paste file i provide you in the past?