have you tired to stealthen you ports? if you haven’t then this is how you do it. CIS —> Firewall —> Stealth Ports Wizards → Block all incoming connections and make my ports stealth for everytone
I will check the website and come back with results.
Another thing is specifying a rule in/out with any arrbitrary IP address specified for either source or destination (or both). If the source IP address is in the cloud, how is it posible that can be outbound from the host? Its not, it can only be an out rule. CIS has always been flakey about that. The only time in/out is a valid rule is when source and destination are both any.
Unless inbound is epxlicitely required for any arbitrary app, only oubound rules are required to be specified, i.e., source NIC to dest IP address (and src dest ports as appropriate). As far as the IP protocol, an outbound rule can be either TCP, UDP (0r both), ICMP or by IP (backstop generic protocol).