Unfortunately that wasn't successful.
I tried what you suggested, and then retried it with the order below, and it still didn't work.
name eth2_in {
default-action accept
description ""
rule 10 {
action drop
destination {
address 172.16.1.0/24
}
log disable
protocol all
}
rule 20 {
action accept
log disable
protocol all
state {
established enable
invalid disable
new disable
related enable
}
}
}