If you enable firewall protection and the Learn mode for either incoming or outgoing traffic, a firewall alert appears. The Application Information tab displays information about the application attempting network access, including application name, path, and version. The Connection Information tab displays information about the traffic protocol, address, and ports.
To respond to a firewall Learn Mode alert
Host Intrusion Prevention creates a new firewall rule based on the options selected, adds it to the Firewall Rules list, and automatically allows or blocks similar traffic.