Hi,
On each Vlan you need to block traffice from subnet to Vlan 10.
Say you have Vlan 40 with ip address 192.168.5.0/24.
use acl as follows:
acl-list 105 deny ip 192.168.5.0 0.0.0.255 192.168.1.0 0.0.0.255 (the Vlan to which you want to block access.
Same goes for rest of the vlans which you want to block.
Acl-list 105 permit ip any any
any any will allow access to internet.
int vlan 40
ip access-group in
So you can customize your vlan in terms of security.
Reg,
Sushil