In CIS, there is a screen called “port sets”(Firewall>NetworkSecurityPolicy>Port Sets) – Can I use CIS to block any member of the individual port sets shown at this screen, or just what is it used for?
For instance, if I “Exclude” port 25 from the “POP3/SMPT” default listings, will this port then be blocked?
Also, If I click on the “POP3/SMPT” heading and then click on “Remove”, then will all POP3/SMPT ports (as listed underneath that heading) be blocked?
Thanks for any help you can me give on this. Trying to block a botnet or trojan that could be using these ports, and cant get antivirus or antispyware to detect it. (I am using cloud-based e-mail so dont use these particular ports).