How to use Windows netsh firewall command to allow only specific ipaddress on all port and deny all other ipaddress

Instead of using the netsh command you could have Windows adding the firewall rules by enabling notification in the "Windows Firewall with Advanced Security" console.

Click on "Windows Firewall Properties" on the root object "Windows Firewall with Advanced Security on Local Computer". From there you customize the settings on each of the profile tabs Domain, Private and Public and set "Display a notification" to "Yes".

When this is done fire up your FTP client and connect to your FTP server. Now you'll be prompted if you want to add a rule for your ftp program.

Good Luck!

-Andy

Go to your Allow rule and click "Properties". Go to the "Scope" tab and select "These IP Addresses" and enter your Remote IP in there. This should allow that rule to only work with the IP address(es) you specify.

You then need to change your default rule "Outbound Rule That Do Not Match Rule" to deny outbound connections that don't match your rule for the appropriate zone (which I would assume is Public in this case). This will deny all outbound connections except for the one you've stated in your "Allow" rule.