![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
You will see all Windows apps will have permission through the firewall and any app that you do not use it is safe to block them. That would be up to you which apps to block because I am not sure which ones you use.
Basically if you don't open things like 3Dbuilder, xbox, etc then yes block them.
The apps you want are your browsers like Edge, Chrome, Firefox, Internet Explorer and ports 80 and 443 to be open. That's what you want to allow.
As for private and public the way that works is based on your connection.
When you are at home with your machine you want to be set to private network.
To tell if you are right click your start button and select network connections.
Under network status make sure it says private network.
Then that is the firewall profile you are currently using.
Defender has 3 profiles... Domain (work), Private and Public.
http://www.thewindowsclub.com/how-to-configure-...
Let me know if you have any further questions.
Note: This is a non-Microsoft website. The page appears to be providing accurate, safe information. Watch out for ads on the site that may advertise products frequently classified as a PUP (Potentially Unwanted Products). Thoroughly research any product advertised on the site before you decide to download and install it.