Just tested. On my test bench ERL, I didn't have LAN rules applied previously. Executing commands below definitely breaks internet access for clients.
set firewall name LAN_IN default-action drop set firewall name LAN_IN description LAN_to_Internet set firewall name LAN_IN rule 1 action accept set firewall name LAN_IN rule 1 description Estab-Related set firewall name LAN_IN rule 1 log disable set firewall name LAN_IN rule 1 protocol all set firewall name LAN_IN rule 1 state established enable set firewall name LAN_IN rule 1 state related enable set firewall name LAN_IN rule 100 action drop set firewall name LAN_IN rule 100 description DropInvalid set firewall name LAN_IN rule 100 log enable set firewall name LAN_IN rule 100 state invalid enable set interfaces ethernet eth0 firewall in name LAN_IN