Account is overriden by Security Integration, that is overriden by User https://docs.snowflake.com/en/user-guide/network-policies#:~:text=%27block_access_rule%27)%3B-,Network%20policy%20precedence,-%C2%B6

User->Security Integration -> Account

The order of precedence (highest to lowest) of network policies when applied at the account, user, and security integrations layers in Snowflake is: D. User, account, security integration Explanation: User: Network policies applied at the user level have the highest precedence. This allows specific users to have tailored network policies that override broader policies. Account: Network policies applied at the account level come next in precedence. These policies apply to all users within the account unless overridden by user-specific policies. Security integration: Network policies applied at the security integration level have the lowest precedence. These policies typically apply to integrations and third-party services accessing the account.

"Network policies applied to a user are the most specific network policies. They override both accounts and security integrations."

It's B : https://docs.snowflake.com/en/user-guide/network-policies The following summarizes the order of precedence: Account Network policies applied to an account are the most general network policies. They are overridden by network policies applied to a security integration or user. Security Integration Network policies applied to a security integration override network policies applied to the account, but are overridden by a network policy applied to a user. User Network policies applied to a user are the most specific network policies. They override both accounts and security integrations.