So my saga continues my friends…
After disabling Xfinity xFi Advanced Security I was up and running. No issues with node or connections.
Yesterday, I got home from work and decided to check on the SN and forum to see how Storj life was going. Didn’t see anything critical in latest forum posts so I went to the SN Dashboard - Last Contact looked normal.
I then went to check on the network usage via server monitoring I use to see if traffic has picked up any and I found this:
It totally caught me off guard. Nothing in the forum where people would usually be panic’d and complaining about a satellite being down or lower traffic, my last contact was normal, and my uptime robot said online. 
Nothing says I have a problem, no uptimerobot alerts, nothing…
I then noticed it stopped traffic at exactly 6am. Instantly checked to see if the port was open.
Of course I found the port closed. I logged into the Xfinity site and verified that Advanced Security was off - confirmed. Checked port forwarding settings - confirmed.
Just like last time, if I made a change to the modem or port forward it worked for 10 seconds then closed the port. I spend an hour troubleshooting again and called Comcast Xfinity support knowing what I would get.
Finally got transferred to advanced support, got someone who understood port forwarding basics. But as expected, got no where with them. It was 11pm at the time so no one of skill or knowledge working and no security department to be transferred to.
I fully explained the problem, solution found two weeks ago, working fine until 6am sharp.
They did tests and "nothing wrong with modem or our service, use a different port or different modem (but pay more to keep unlimited data when not using xFi modem - no thanks).
She did mention that Comcast does have a blacklist of ports they do block regardless but said 28967 was not on that list (TOTALLY FAILED to ask when that list was last updated 
)
Spent over an hour trying different things and bailed on support. While talking I did think of one potential solution Spoiler: It worked keep reading
Turn the xFi modem to bridge mode. This will disable all modem and cloud based security features.
Now for some reason, the last Xfinity modem for the 60Mbps plan didn’t need this, but all the advanced features of xFi cause problems.
Now of course I had to completely redo my network to get this to work. Here is the summary version that took me 6 hours to troubleshoot and get working.
Toggle on Bridge Mode and power off modem (has to be rebooted, toggle only doesn’t enable)
Change vSwitch to not allow OS to use the port for management AKA passthrough
Reboot server to remove port
Change WAN port on VM firewall to DHCP and power down
Turn on modem and let fully load
Turn on server
Turn on VM firewall - Got public address 
This change caused me to lose access to GUI for firewall - no clue why - spent hours trying to regain access with Google and forums/reddit. NOPE - factory default firewall settings and start from scratch.
Configure ports, NAT (new now in bridge mode), FW rules, etc.
Everything looks ready and gave it the ol’ docker restart storgenode
BAM - 0 seconds, port open and staying open, SN logs working with downloads, uptimerobot sends me the UP email, back in business.
41 hours downtime this time between my job, family, 4 hours of sleep, and Comcast Support call. 6am - 11pm next day. Still don’t have everything working like wireless and firewall rules are critical needs configured only at this point but my SN is online - priorities!
I wanted gig speeds and unlimited data, Xfinity says use our modem or pay $50 per month extra for unlimited with your own modem… Bridge Mode it is then.
Still don’t know why 6am it just stopped. Worked for 2 weeks and close (months on old plan). No issues in past 2 hours for SN. Let’s hope this doesn’t become a trilogy