I have a publicly-facing Windows 10 box (with a public IP) that I would to configure so that I, and only I, can remotely VNC to it.
Fortunately I can ensure that I will only be connecting to my server from a single remote host (198.51.100.1 in this example). So I have the firewall rules setup on the Windows 10 host in this way:
Specifically, under the "Scope" setting for the rule, I have configured "Remote IP address" to allow only 198.51.100.1. Under "Advanced", I have the rule set to apply to Domain, Private and Public profiles. Under "Protocols and Ports", the incoming rule applies to local port 5900. No other customizations are present.
However this rule does not appear to be working. I can still VNC to this Windows 10 server from any remote PC, not just 198.51.100.1
Why is this rule not blocking connections from all IPs except the one I want?