I need to block all traffic on a wireless interface. I have tried a few was to
I need to block all traffic on a wireless interface.
I have tried a few was to allow wireless to wan
the block any to any
I only want the wireless to access the internet only and no other interfaces or ipsec tunnels
Pass specifically the local assets the wireless clients need (like DNS)
Reject more general local assets you don't want the wireless clients to be able to access (like other local networks)
Pass everything else (the internet) (WAN net is NOT the internet. It is the subnet of the WAN address only.)