I have a public IP block where I’ve configured the firewall on that particular IP. I’ve just set a single rule i.e. refuse everything.

Externally this works fine, the connection doesn’t establish. However from inside OVH - even from an account nothing to do with the project where the IP is located - it’s all completely open!

How can I lock it down so that the firewall really does lock down that IP, even from traffic coming from OVH.

(Firewall isn’t much good if an attacker can get around it by getting an OVH account!)