Hey, How will counters that result in blocking actions be created in the
end? Is source/destination the filter that defines which connections
will be considered for blocking at all and from those it will keep a
list by (srcip,dstip,service) to block?...