Rule: dhcp ip-Range -> internet only access

  • Hi,
    I want to define a rule that the users from the dhcp ip range can access only the internet (wan), no access to the internal net. I've created an alias dhcp_users which includes the dhcp-iprange ( but didn't know how to create the deny rule. Or WAN only rule.
    Maybe someone can give me some hints or links.


  • Galactic Empire

    Deny rule on the LAN interface

    0_1542540189554_Screenshot 2018-11-18 at 11.22.25.png

    h_ip_local contains my local subnets, just add the alias for your subnet range and replace my TEST net with your DHCP alias.

  • Hi,
    thanks for the quick answer and it works.


Log in to reply