hi there,
i need help with the configuration, maybe im simply missing something
i dont want every subnet to be able to go anywhere, so i turned the rule from accepting to denying anything. so far everythings fine, as im able to decide witch net is able to go where on specified services...
the problem now is: between the subnets, theres no problem, because i can simply add an object witch contains the other ip/subnets. but how am i able to simply set "the internet", as in not private ranges, for target??!? normally on firewalls i can simply tell the destination would be my wan-interface, not only ips/ranges... is there a way to do this?
isnt it common to allow whats permitted? at the moment i cant see how to do this without doing it in the imho wrong way and forbid everything i dont want the subnets to be able to, just to get them in the end of the list to be able to get to the web by the allow anything-rule.