Is it ok to implement a zone out-to-self but not self-to-out? The end result I want is to restrict inbound UDP traffic to a particular source address. But I want any traffic originating from the router to be permitted outbound. I wondered if simply omitting the self-to-out zone would be the same. Thanks.