How do I block an application from accessing one IP, but not another? I do not want to block the program entirely, but just block its access (always) to one IP, but allow it to access another.
Go to FW > Network Security Policy > Application Rules > add > browse to the exe of your program; then when you have the application path click on add at the bottom left on the window; in the new window : allow TCP or UDP OUT and choose in Destination address a single address, type the address you want to access.
Click again on add at the bottom of the window but this time choose block TCP or UDP OUT and type the address you don’t want to be accessible.
Put the block rule below the allow one. Don’t forget to click on apply and ok when required.