When a particular communication is detected, individual firewall modules apply rules one by one in a defined order. If the communication meets a rule, a corresponding action will be taken and no more rules will be tested.
Rules of individual Kerio Personal Firewall modules are applied as follows:
Intrusion detection system (IDS — refer to chapter 11. Network Intrusions Prevention System (NIPS))
Stateful inspection of the network traffic (automatically lets in/out packets which belong to permitted connections — see chapter 5.1. Firewall Behavior),
Internal rules for Kerio Personal Firewall components — i.e. permission to access a web server in order to check and download new versions of the program
Advanced packet filter rules (see chapter 8. Advanced Packet Filter)
Predefined network security rules (see chapter 7.3. Network Security Predefined Rules)
Application rules (more information in chapter 7.2. Rules for Applications)
Note: Individual firewall components may be disabled — corresponding rules will not be applied on detected communication. Internal firewall rules cannot be switched off.