The egress firewall rules feature will configure the egress rules for guest network on VR/External firewall to ALLOW
specified traffic to outside and BLOCK the remaining traffic. By default all the traffic is ALLOWED to public network. When you specify a egress rule only that rule specific traffic is allowed. I have created a functional spec here: https://cwiki.apache.org/confluence/display/CLOUDSTACK/Egress+firewall+rules+for+guest+network Please review and provide your comments. Thanks, Jayapal
