Just wanted to make several closing replies/comments.
The Avast Firewall will deny access if it goes against the application rules. If it isn't on the list, then it will closely monitor it and block suspicious behavior/actions. That's better than choosing the wrong action to take.
If the firewall itself is using some form of Network type IPS
Intrusion Prevention System, then yes the wrong choice "could let in a threat". But so far what I've read about the HIPS for personal PCs they appear to be some form of Program Control-HIPS that will alert you of a app/process that trying to run and not in it's Program Control-HIPS settings.
Have only used OA. As to OA (back to the OP's inquiry) the Program Control/HIPS has it's own pop-ups, and the OA firewall has it's own separate pop-ups. If one gets a Program Control pop-up and should click "Allow" to run, if the process tries to access the internet to download (let-in) a payload it will by blocked by the firewall with the firewall pop-up.
I have tighten up the OA's Program Control Settings and Firewall Settings, and the
only times I get Program Control pop-ups is after I install a new app or update an existing app.
Second, if you read what I posted before link I was using the Matousec's tests as an example how many firewalls are at the top now, i.e., using some form of HIPS/Program Control.
Well, if you know the test is flawed, why do you use it as a valid example? And, as I have said, the tests that determine the "top firewalls" aren't firewall tests. They test the HIPS/Program Control more than the firewalls themselves.
If you read
all that I posted was it was only example of showing how
many (i.e., the
number of firewalls) that are now using some form of HIPS, whereas not too long there was mainly just Comodo and OA. Would assume these firewall vendors have added some form of HIPS because they see a valid reason to do so, and
not just so they could do well in the Matousec's tests.
... but now I just prefer having programs that decide for me like the avast Firewall.
Guess I read too many reviews/tests, security articles
-- but at this time I have not come across any one security app/suite I would trust enough to allow it to automatically make all the decisions. I'm in the
firm belief that no
one security app can catch everything, and using a
layered approach overall the best security solution. Hence I'm among
those who never been fond of using a "security suite"--having all eggs in one basket.
If you know what a zero-day vulnerability is, then you'll know that there's a risk that any AV/AS may not be able to detect; e.g., AV-Comparatives and others Retrospective/Proactive type tests.
Cheers,
Jon