We have a few Xp machines left that we wont beable to replace before 8th of April so we have thought if we apply a lockdown to these machines and only let the minimum of applications talk to the network and restrict the server it talks to down it will reduce down any XP risks further.
The problem is i created a Firewall rule one application at a time and moving on to the next when that was working, but after my test machine was rebooted it seems to have stopped working any basically my rules are being ingorned. If i enable the allow any app rule it works fine but i dont want that.
The rules i have created that allow the application and ports are at the top of the list above the block all. The traffic log still shows the application as blocked but all the information in the log matches the allow rule so if should allow the traffic to pass.
Any ideas on what i have missed?
Sep client is v12.1.4013.4013