The hosts connected to your switch are in default vlan which is vlan 1.
You don't need vlans in you networks based on your illustration unless it tells you to separate the hosts or users connected to your switch in each network.
You can manage these...
If you configure your static route to exiting interface to broadcast network, the traffic will be sent as broadcast. The router then will have to figure out the next hop to its destination using ARP request since it doesn't know the next hop's IP ad...
I think you have to use extended access-list on this.
Try this:
ip access-list extended 189 permit tcp host ip of source host ip of destination eq 16992
ip access-list extended 189 deny tcp any host ip address of destination eq 16992
ip access-list ...
