How would I proceed to block all traffic towards internet from a specific IP, bar several ports?
From what I understand, I should select forward chain, src address (local PC IP address) and set the rule to block?
I also have two TCP ports that I need to work, so I should set the allow rule to forward, port, protocol, (in interface) and destination address.
Am I good with this?