Rule: dhcp ip-Range -> internet only access



  • Hi,
    I want to define a rule that the users from the dhcp ip range can access only the internet (wan), no access to the internal net. I've created an alias dhcp_users which includes the dhcp-iprange (10.0.10.230-.254) but didn't know how to create the deny rule. Or WAN only rule.
    Maybe someone can give me some hints or links.

    Regards,
    Jürgen


  • Galactic Empire

    Deny rule on the LAN interface

    0_1542540189554_Screenshot 2018-11-18 at 11.22.25.png

    h_ip_local contains my local subnets, just add the alias for your subnet range and replace my TEST net with your DHCP alias.



  • Hi,
    thanks for the quick answer and it works.
    0_1542542990704_f6c68171-1d1b-4768-b107-018cfec5ca52-grafik.png

    regards,
    Jürgen