What I want to do is DROP all protocols/ports coming in or going out of the ZS except what I explicitly state in the firewall rules. e.g. 80/443/22/ etc
I want to use it to control the use of P2P applications such as Limewire. I know ZS QOS can do this but don’t want to use QOS.
In the firewall rules i set my chains for forward/input/output to drop as default and explicitly allowed the protocols i want but ZS is not allowing access for even the protocol/ports that are ALLOWED.
i’ve used this approach successfully with pfsense.