Need advice, I would filter subnet 10.2.0.0/24 to have access only to 3 PC from subnet 192.168.10.0/24 and should have nternet access,
so I created address list with these 3 PC:
/ip firewall address-list
add list=NAS address=192.168.10.12
add list=NAS address=192.168.10.13
add list=NAS address=192.168.10.14
then firewall rule:
/ip firewall filter
add chain=forward action=drop src-address=10.2.0.0/24 dst-address-list=!NAS log=no log-prefix=""
with this setting, subnet have access to these 3 PC only but they have no internet access, how to fix that rule to allow then for outgoing internet traffic?
(My other setting lan, wan ip address, masquerading is OK - other subnets have internet access)
thanks.