This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 92%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENA%3C/text%3E%3C/svg%3E)
Hello,
I created an inbound allow rule for a specific app in Defender Firewall, but I can still see dropped traffic, despite having this rule enabled.
What can I do further to check what is causing the drop? I tested with the firewall disabled and everything works fine, so the issue is related to the firewall.
There's no other rule that can interfere.
Thanks!
Hello Nicusor,
Windows Defender Firewall is only one of several services that use WFP (Windows Filtering Platform) BFE (Base Filtering Engine).
The output of the command netsh wfp show netevents is perhaps the best source of information about why a packet is blocked. If that command produces no output, you might need to enable netevents with the command netsh wfp set options netevents = ON
Gary
