It appears you're on the right track. Have you successfully applied the policy you showed in the screen shots?
Rather than a port scanner (which might get blocked by IPS policy), I would try initiating a telnet session to one of the target ports and checking the connection events for the outcome.