Scenario:

    LAN1: 192.168.50.0/24
    LAN2: 192.168.60.0/24
    LAN3: 192.168.70.0/24
    LAN4: 192.168.80.0/24

Requirements:

    Allow only HTTPS traffic from LAN1 to LAN3.
    Block all inbound traffic to LAN2 from any other network.
    Allow only secure email (SMTPS, port 465) from LAN1 to LAN2.
    Allow ICMP traffic between LAN2 and LAN3.
    Block all outbound HTTP traffic from LAN3 to any network.
    Allow DNS (UDP port 53) requests from LAN2 to LAN1.
    Allow remote desktop (RDP, port 3389) traffic from LAN4 to LAN1.
    Block FTP traffic from LAN4 to LAN2.
    Allow secure FTP (FTPS, port 990) from LAN3 to LAN2.
    Allow SSH traffic from LAN1 to LAN2, but block all other traffic from LAN1 to LAN2.