I have created a simple rule, to block a device from accessing the internet.
Only NTP shall be allowed. As DNS only Ipfire’s inbuilt DNS server is allowed.
Usually the logs show the blocked accesses.
So your rules should be working.
You can check that, if you look at the iptables rules in Firewall → iptables, section FORWARDFW.
@matthaesius , that’s right!
If you tick the ‘Log’ check box for blocking rules only, only those are logged. Your rules 1 and 3 are allow rules, for example.