Special considerations when adding a rule for a network adapter

When you create an allow rule for a network adapter and/or a rule with a specified TTL, this rule may conflict with a deny rule for applications. For example, if an application is in the High Restricted group, it will be denied network access even if you created an allow packet rule for the network adapter (and for TTL).

To configure an allow rule to work for all applications that attempt to connect to the network via this network adapter, you must create the following rules in order of priority from the highest priority to the lowest priority (in the general list of packet rules, the priority is determined from top to bottom, going from the highest priority to the lowest priority).

1. Allow rule for the selected network adapter.
2. Deny rules for all other network adapters.
3. Allow rule without specifying a network adapter.

To configure an allow rule to work for a network adapter using TTL, you must create the following rules in order of priority from the highest priority to the lowest priority:

1. Allow rule for a specific TTL value.
2. Deny rule for a TTL value equal to 255.
3. Allow rule without specifying a TTL value.