Thanks NJH for your input, I did know what DNS was, not sure whether blocking ports actually affected DNS resolution...

Thanks again.

General setup
Default action =block

Firewall>> Filter setup
set 1 Default call filter---- Leave as default = Block NetBios
set 2 Rule 1 Default data filter---- Leave as default = Block NetBios->DNS

Then Data Filter set 2 Rule 2 comments (allow web)
Direction ->Lan->wan
source IP = Any
Destination IP Any
Service Type edit Protocol TCP/UDP
Source port 1 ~65535
Destination Port 80~80
fragments dont care
pass if no further match

Data filter set 2 Rule 3 comments (allow DNS)
Direction ->Lan->wan
source IP = Any
Destination IP Any
Service Type edit Protocol TCP/UDP
Source port 1 ~65535
Destination port 53 ~53
fragments dont care
pass if no further match

This for me Blocks all trafic out bar web (80) & DNS(53)
Dont forget to add Https (443)
ps I don't run mine like this but I thought I would see if it works and it does, blocks all but web & DNS

Hope this helps

Thanks Steveo, the information is excellent. Makes total sense to me now.

No problem, i've only learnt this stuff from this excellent forum, the firewall on the Vigor 2820 baffled me at first but looking and learning from others here in time it all makes sense.
Regargs
Steveo