1. ER6020. Under access rules a number of rules (total 10) are configured with ALLOW. The last rule ie. rule #11 is a BLOCK ALL rule from ANY in Source LAN to ANY. All services are blocked so that only the services allowed in rules 1 to 10 are permitted. This works perfectly.

2. However the moment this rule #11 is added, the ports forwarded under Virtual Servers are not permitted any more and seem to be blocked. For e.g one of the allowed rules is port 443. I also have a virtual server forwarding WAN_ALL to port 443 of an internal machine. This forward from external WAN is not working.

3. The moment I delete the rule #11 that has the BLOCK ALL ANY source LAN to ANY the port forward works.

Can someone guide me on how to block services but still have virtual servers forwarding working.