Hi all. Please forgive me if I ask some dumb questions, I'm a vigor-newb trying to get my v2920 set up.
I've set up the default rule to BLOCK (firewall->General Setup->Default Rule tab->Filter action=Block) as I wanted a firewall and not a "default pass everything simple NAT router"! However this obviously means that I must have specific filter rules to pass what I need across the firewall. So I have set up IP objects and groups for all my kit, and service objects and groups for all the services I want to access on the internet, such as and DNS, Web, mail, video streaming etc. I have added rules to the Default Call Filter to allow out DNS and Web (plus others), but I'm not getting any web access from the LAN (unless I set the Default Rule to "pass", rather than block and I don't want that!). I'm also confused about the role of the Data Filter, so here's my questions:
1. Do I need a rule to allow LAN->WAN Web in the Data Filter (in addition to the Call Filter)?
2. Do I need a rule to allow WAN->LAN Web responses in the Data Filter?
3. Is there a knowledgebase with example rulesets anywhere?
Grateful for any advice. Thanks. :?