Hi Guys,
I have an address list (blacklist) which has the IP addresses I do not want any traffic moving to or from.
I want to block traffic to these addresses from my LAN and WAN sides.
I have made a firewall rule which looks like this.
chain=forward action=drop src-address-list=blacklist
dst-address-list=blacklist in-interface=all-ethernet
out-interface=all-ethernet
Have I done it correctly?
Thanks in advance.
Bumps 
Split your rule into two:
add chain=forward action=drop src-address-list=blacklist in-interface=all-ethernet
add chain=forward action=drop dst-address-list=blacklist in-interface=all-ethernetYour actual rule would only block traffic between the blacklisted addresses.
-Chris
This is the right answer.
Thanks
And just to be 120% sure, add this rule as well to block access to your router (management, DNS, queries, Proxy…) for those addresses:
add chain=input action=drop dst-address-list=blacklist in-interface=all-ethernetCheers
-Chris