So I want to deny ALL traffic except for IP’s within my trusted zone. Basically, anything outside of the trusted networks or IP’s will not be able to access my machine. How can this be done? I have the trusted zone part figured out but can’t see how to deny all other traffic.
The easiest way would be to create a global rule with the following parameters.
Open Global rules (FW, Advanced, Network Policy, Global Rules tab).
Block (and log)
Source Zone “trusted” + exclude
This will block all except the trusted zone to your machine.