Scenario:

    LAN1: 192.168.10.0/24
    LAN2: 192.168.20.0/24
    LAN3: 192.168.30.0/24
    LAN4: 192.168.40.0/24


Requirements:

    Allow only secure web traffic (HTTPS) from LAN1 to LAN3.
    Allow SSH traffic from LAN2 to LAN1 and LAN4.
    Block all traffic from LAN3 to LAN1.
    Allow DNS traffic from any LAN to LAN1, but only on UDP port 53.
    Block HTTP (port 80) from LAN4 to LAN2.
    Allow ICMP (ping) traffic from LAN2 to LAN3.
    Block all traffic from LAN4 to LAN1.
    Allow FTP traffic from LAN2 to LAN3 (ports 20-21).
    Allow secure email (SMTPS) from LAN1 to LAN2.
    Allow remote desktop (RDP) traffic from LAN4 to LAN1 (port 3389).