Hi @Former Member ,
You will have to enable adaptive mode on some machines, with which ENS will be able to create its own allow or block rule.
Enabling adaptive mode on a lot of machines will create tons of rule and you will find it hard to administrate all the rules. Hence, I would recommend you to enable adaptive mode on a very less amount of machines.
After adding the adaptive mode generated rules to " firewall rules " policy, you can modify the rules and move it to top of the stack in firewall rules policy to take effect.
For more information you can follow the below articles:
Hope that helps!