jrotello/gist:20b76ed3084776751b84a86b02f0f31a

## gistfile1.txt
set firewall name WAN_OUT default-action accept
set firewall name WAN_OUT description "packets from intranet to internet"
set firewall name WAN_OUT rule 5 action accept
set firewall name WAN_OUT rule 5 description "Allow NTP on IP Cameras"
set firewall name WAN_OUT rule 5 log enable
set firewall name WAN_OUT rule 5 protocol tcp_udp
set firewall name WAN_OUT rule 5 source group address-group ip_cameras
set firewall name WAN_OUT rule 5 source port 123
set firewall name WAN_OUT rule 10 action drop
set firewall name WAN_OUT rule 10 description "Block IP Cameras"
set firewall name WAN_OUT rule 10 log enable
set firewall name WAN_OUT rule 10 protocol all
set firewall name WAN_OUT rule 10 source group address-group ip_cameras

set interfaces ethernet eth0 firewall out name WAN_OUT
	set firewall name WAN_OUT default-action accept
	set firewall name WAN_OUT description "packets from intranet to internet"
	set firewall name WAN_OUT rule 5 action accept
	set firewall name WAN_OUT rule 5 description "Allow NTP on IP Cameras"
	set firewall name WAN_OUT rule 5 log enable
	set firewall name WAN_OUT rule 5 protocol tcp_udp
	set firewall name WAN_OUT rule 5 source group address-group ip_cameras
	set firewall name WAN_OUT rule 5 source port 123
	set firewall name WAN_OUT rule 10 action drop
	set firewall name WAN_OUT rule 10 description "Block IP Cameras"
	set firewall name WAN_OUT rule 10 log enable
	set firewall name WAN_OUT rule 10 protocol all
	set firewall name WAN_OUT rule 10 source group address-group ip_cameras

	set interfaces ethernet eth0 firewall out name WAN_OUT