Block traffic from user to user but allow traffic from user to server pc?

I am having users join my network. What I want is so that they can communicate with my “server pc” and not beable to communicate with all other users connected. I read something that had me put my server pc on one network "192.168.191.0/24 and all others users will be auto assigned 192.168.192.0/24 network. Then in the flow rules added this below. How can I make that work? It didnt seem to stop traffic from happening. Anyone know how to do this or how to get my idea going?

drop
not ethertype ipv4
and not ethertype arp
and not ethertype ipv6

ipsrc 192.168.192.0/24
and ipdest 192.168.192.0/24

;

Accept anything else. This is required since default is ‘drop’:

accept;

See Rules FAQ | ZeroTier Documentation

1 Like