I would like to prevent multicast DNS on port 5335.
There is an existing rule for this in the predefined firewall rules (which are enabled by default) named Allow incoming multicast DNS requests from the Trusted zone on UDP 5355.
This specific rule cannot be disabled, unfortunately.
I do use the predefined firewall rules, so I would prefer not to disable them completely.
How can I keep all of the other predefined rules, but prevent multicast DNS? I also use the Trusted Zone for other firewall rules.
I can think of 2 options:
Create a single policy with a firewall rule to block this traffic. How can I make sure the new policy's firewall rule to block this traffic is matched first?
Remove the Trusted Zone networks. Create a new custom Zone to configure my custom firewall rules. If I do this, will the predefined firewall rule no longer work because there are no networks defined in the Trusted Zone?