2nd LAN fw config

[just-me]

Hello.

I'm new to opnsense.  Looked at the docs and searched, tried some stuff that blocked my 2nd lan out so need some advice/guidance.

So I have a 4 port box.   Works fine, Tested from outside and its stealthy.

Decided to create a 2nd LAN on my third port called 'remote' for remote working.  At first it didn't work but on checking the FW for the first LAN and then the 2nd, saw it didn't auto create it.  So, now 'remote' is working fine...but...

If I scan the first LAN from the new 'remote' one, I can see all the computers/devices.

How do I configure the new 'remote' to ONLY go out to the internet/WAN, and block it from seeing the original LAN ?

NOTE:  I don't mind being able to NMAP from the first LAN to the remote LAN, but not the other way around.

Hit me with the clue stick please.