Hi,

I have a Vigor 2820Vn router and am hoping someone can direct me on how best to configure the built-in firewall to achieve the following:

I want to block certain LAN connected devices from having any outgoing internet access. E.g. I have a "Smart" TV and want it to connect to other devices on my internal LAN but do not want to give it access to connect to services outside my LAN - how is this best achieved? The Smart TV is just an example but I would like to apply this to other peripherals like Wifi printers etc.

Many Thanks for any advice.

Summary - specify the IP addresses of the devices to be blocked with DHCP reservations, then set firewall rules.

Say your network is 192.168.1.0/24 (192.168.1.0 to 192.168.1.255). Set the DHCP start address to 192.168.1.10 with 200 addresses (default).

Now in the DHCP server on the Draytek, find the devices to be filtered and provide them reserved addresses ('bind IP to MAC'). Give all the devices to be filtered adjacent addresses, say 192.168.1.100 to 192.168.1.120.

Then create an outbound firewall rule, direction: lan to wan, source: range, 192.168.1.100 to 192.168.1.120, destination: any, service: any, filter: Drop Immediate

Hope that helps!

Thanks for the reply J1mbo.
As a test I tried applying this to my main PC's IP and it worked so many thanks.