Outbound defaults are all allowed, only the entries specified by the relevant outbound rules are prohibited;
Inbound defaults are all forbidden and only the entries specified by the relevant inbound rules are allowed.
Inbound rules There's really nothing to say, just add rules that allow an IP or port to access, or allow a program to access it all.
To control the outbound of a program, only allow access to the specified IP, the other IP is not allowed, you can add a blocking outbound rule, and in scope specify the scope of the remote IP address, and in the scope of the target IP can be avoided.
For example, to program Navicat.exe to only allow access to 10.0.0.97, you can add two segments to the IP address range: 0.0.0.0-10.0.0.96,10.0.0.98-255.255.255.255 so that Navicat.exe can access the 10.0.0 normally .97 now.
Windows Firewall outbound, inbound-related knowledge summary