I have setup Zeroshell with several VLAN’s on one
Right now any vlan can communicate with any other. I would like to prevent VLAN 10 from communicating with any other VLAN.
I have this setup and one of my vlans has free internet access but cannot talk to another conected network.
One simple rule saying routed/bridged from interface vlanXX not going to interface Internet all services drop.
Plain and simple. Consider using negated items in the rule to make the ruleset as simple as it can be. The obvius advantage is that the above mentioned rule is still valid even if more vlans and networks are added later and it does not break security.