I guess the advantage of corridor is that is makes violations known in logs while using Qubes firewall simply blocks it if it ever was to happen.
I would be careful about this in context of Qubes. → Verify Changed Firewall Rules
If this is really useful, that seems at least like a usability issue. Please check that this has been reported anywhere and if not I suggest a to write a report to make sure you’re on the right track here.
Ok. So no corridor involved here.
How about blocking all UDP?
What about IPv6?
related: add IPv6 support