Block everyone else on my subnet

Hi all,

I have been configuring my firewall very closely, doing research and what not…

One thing has eluded me:

I wish to block incoming traffic from all the other computers on my subnet, while still allowing inbound traffic from outside my router.

Why would I do this? Because I live in an apartment building where the network connectivity is provided by the landlord and is accessible to all tenants. I have noticed that some of the other tenants have been running port scans on other computers within the network. This has been filling up my firewall event log, which in and of itself is not a problem, but more of an irritation.

I would like to create a network zone that represents all the computers on my subnet except myself, and the obvious other computers and equipment, like the broadcast address, the gateway, etc.

Every time I try to create a zone, then block it, I end up breaking my own connectivity.

Does anyone have a solution to this problem?

Thank you in advance.