Hi there,

I'm struggling with a Vigor 2830, and wondered if anybody can please help.

I'm trying to block all outgoing ports except those that are needed (HTTP(s), SMTP etc.). I've created a "block all out" rule, with the following settings:

Direction: LAN/RT/VPN -> WAN
Source IP: Any
Dest IP: Any
Service Type: Any
Filter: Block If No Further Match

The rule works fine everything is blocked, so I've set allow rules for the acceptable protocols/ports, but I cannot get HTTP (over TCP:80) working. I've even set another rule which allows everything out on my computer's local IP, and HTTP still doesn't work. HTTPS (TCP:443) works fine.

I've tried upgrading the devices firmware, but that didn't help.

Am I missing something, has anyone got any suggestions I could try?

I have just tried to replicate this in a similar way

I created the block all rule (unless further match) the same as yours.

Then I created a LAN>WAN rule with the services I wanted to pass (80 and 443).

Before I enabled the Pass rules I tested the block and I couldn't get to any sites.
I then enabled the Pass Rule and it worked fine (DNS was going out of a different line and provided by a server onsite)

Is DNS your issue, does you PASS rule include port 53 for lookups?