Hi Astradzhiev, Thanks for your response. I have little confusion on this part. How come the traffic is allowed wherein we have not defined any destination port in the rules, We have only defined the application...Does it use the implicit allowed list of applications for this purpose or something else. For that reason if you configure rule that is blocking an application, firewall will still allow the TCP hand-shake to complete, because firewall will need to allow the session to pass in order to gather enough information to identify the application.
... View more