Hello,
One important thing to remember is 'firewall filter is per packet filter'.
With the filter configuration above in place, let us say you send telnet request from 172.16.100.10 to IP 1.1.1.1.
The reply packet will be from 1.1.1.1 to 172.16.100.10 with source port as 23 & destination port as random port which should get blocked by 'Deny_Access'. You should be able to see the counter incrementing for 'Deny_Access'.
What you can try is allow communication from source-port like 22,23 etc to destination 172.16.100.10 for TCP traffic as well as from source-port like 53 to destination 172.16.100.10 for UDP traffic above term 'Deny_Access'.
Regards,
Rushi