You told it to Block All TCP and UDP. If it is defined further to ANY Port and ANY Address then you wouldn't be able to do anything.
I'm not sure if your NIS Pro is the same as my NIS 1.0 but it is based on ATGuard as is mine.
I would suggest a Block All Rule at the end of the Rules List. NIS is ATGuard and that last Blocking Rule was a must in AtGuard. If you read in you Help files you'll see it does not come right out and tell directly to use one but it does suggest it in so many words.
This has to do with Auto-Rule Making and some UDP's getting through the FW without being Logged.
NIS doesn't block all UDP's in the "Unused port blocking" or "Implicit block rule" And what's more it will not show up in the Log unless you make a Rule to Log it.
Make a Ignore Rule to Log all UDP at the end of your list to see what gets by.
Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here.
All logos and trade names are the property of their respective owners.