I've got some firewall rules in places to block the internet connection from one VLAN (which I use for IoT devices). However, the current firewall rule that "blocks" connections causes problems with timeouts on some devices. Apparently, the solution is to "reject" connections rather than "block" them - at least with the device in question.

Is there a way to reject, rather than block connections within the Draytek 2860 firewall interface?

I don't think the 2860 implements the concept of "REJECT" (which I'd not heard of till 5 minutes ago!) - someone will correct me, if wrong...

But what's the problem you're trying to solve?

If these are commercial I.O.T. devices, then don't they all phone home for instructions...so need internet access. (I.O.T. = Internet of Things )

FWIW, in my case I allow them unfettered access to the Internet - but only ICMP to other VLANS (just so I can see if they're alive)