hello to all,

i want to ask for help on setting NIS 2009 firewall to block all trafic, even for other computers on the local network,

except for communication between router for dhcp and for filesystem sharing between windows workstations..

here is the topology of the network:

 ____________________________________________________

|                                                                                                        |

|            Thomson SpeedTouch 780WL - Wireless Router            |

|____________________________________________________|

               |                         |                          |                          |

 _______|_____ _______|_____  _______|_____  _______|_____

|                        | |                        | |                        | |                        |

| Win XP SP2   | |      IRIX WS    | |  RHEL WS     | | Vista SP1 BS |

|____________| |____________| |____________| |____________|

so, XP ws should be allowed to access WAN, but Vista machine

should be only allowed to access XP shares, no other LAN or WAN traffic..

i have previously used NIS until v. 2005 and then gave up, it was a monster resource hog,

but this one is nicely trimmed, however, i don't like built-in rules that can't be adjusted and

a lot of generalization..

all help is appretiated, step by step guide prefered, thanks in advance!!