Hello,

Is there a way to configure  an ACL on the router (ER7206 v2 in Standalone Mode) to allow outgoing and deny incoming except related or established traffic?  

By incoming, i mean traffic coming into the WAN interface from the Internet.  The router does have an active firewall but i am curious if additional stateful ACL rules could be applied on the WAN link to restrict incoming traffic. 

Would setting a BLOCK policy using the NEW state acheive this? I'm guessing it would but i want to be sure that the router interprets it this way. 

I've also seen a recommendation to use the default auto type for the state but that option isn't available. The available states are New, Established, Related and Invalid.