Predefined Firewall Policies/Blocked Application by IP


Under Predefined Firewall Policies
Blocked Application are blocked by IP

So my question is if i block Blocked Application by TCP and UDP will that be a good or bad thing to do?

[attachment deleted by admin]


When CFP talks about IP as a protocol, that includes every particular protocol: TCP, UDP, ICMP. So the rule saying “block IP in/out any…” effectively blocks any access of any kind, as intended for the “blocked app” firewall predefined policy.

Oh i see so if i make a block rule under Firewall/Network Security Policy all i need to do is to select Protocol=IP in order to block all communications in/out is that correct?