Couldn't get non 9100 printing working on Windows server so finally gave up and just denied all IP connections in the security tab except to the windows print server and the Konica printer IP on the fiery itself. IT's still vulnerable, but mitigated the risk. Thankfully we don't have any other Direct IP printing on this printer.