Been at this all day with no luck. Basically, I have a 3-interface machine; external, home, and servers. The interface "servers" allows outside connection on a handful of ports, "home" just has PCs and laptops, so not the same. "external" is connected to an untrusted router, so I'm running it as a router/firewall/nat system driven by untangle.

I'm trying to run my firewall with a very restrictive "opt-in" setup with everything disabled unless explicitly enabled (including adding all ports needed for every game). "home" can also connect to "servers" for administration from my laptop.

Having an issue getting my firewall rules to work, attached is a cropped list of my current rules (I've tried a lot of other settings already).

Any help or guidance is much appreciated!