Internet access: Block all network and allow an IP address

Hi, shinichix, and welcome to the User BB!

Is this a home-use license?  If not, then do you have a paid subscription for Web Protection?

To associate specific machines to specific IPs, look in 'Network Services >> DHCP' on the 'IPv4 Lease' tab where you can make IP assignments static based on the MAC address.

When you did the initial installation you probably already have a rule like 'Internal (Network) -> Web Surfing -> Internet : Allow'.  If you have "Any" in that, replace it with "Internet" as I've indicated.  Replace "Internal (Network)" with "Internet Allowed" to restrict internet access to only the members of the group.

Since all traffic is dropped by default unless explicitly allowed, you don't need the following block rule recommended by Flo, but it would keep the Firewall log file smaller and "cleaner."

Cheers - Bob

Hi Bob... I'm attempting the same thing on a home-use license - latest firmware 

 

If I created a rule in the FW:

Position: 4

Sources: Internet allowed (all my mac assigned, dhcp hosts)

Services: Web Surfing

Destinations: Internet IPv4

Action: Allow

 

... what would be the cause for my devices still having internet access once disabling that rule?

Hi Bob... I'm attempting the same thing on a home-use license - latest firmware 

 

If I created a rule in the FW:

Position: 4

Sources: Internet allowed (all my mac assigned, dhcp hosts)

Services: Web Surfing

Destinations: Internet IPv4

Action: Allow

 

... what would be the cause for my devices still having internet access once disabling that rule?

Hi, and welcome to the UTM Community!

The hint in my post above was asking if he had a Web Protection subscription.  See #2 in Rulz.

Cheers - Bob