I have an RV016 configured to allow traffic from the wan side to connect to nodes on the lan side without firewalling. This router is set up internally between two subnets. My goal is to allow some traffic from wan to lan but not all traffic. During testing, I have tried to selectively open ports, through the firewall tab's access rule page, but nothing seems to work. I have even tried the following configuration without success. Here are the details. RV016 Firmware version 2.0.10 Firewall disabled, https enabled, Multicast passthru enabled. Wan IP 192.168.10.x Lan IP 192.168.12.x With this config, I can ping all devices on the 192.168.12.x subnet, but I can't connect to any of them, other than the lan address of the RV016 itself, for any other service unless I either set up 1-to-1 NAT or set up port forwarding. Neither of these options is very appealing. (Heck, neither is the fact that I can't turn off NAT on this device, but that's been documented already on this forum). My goal is to enable access to remote desktop and vnc and http and https on all of the nodes on the 192.168.12.x subnet from the 192.168.10.x subnet. Anyone have suggestions?