I would suggest to remove the firewall component from servers all together.
go to add/remove programs
select sep
modify
remove NTP
reboot
There was two teefer blue screen issues fixed in 12.1.3, so upgrade to SEP 12.1.4
BugCheck 50 (PAGE_FAULT_IN_NONPAGED_AREA) references teefer.sys
Fix ID: 2990492
Symptom: The Symantec Endpoint Protection client experiences a blue screen with BugCheck 50 (PAGE_FAULT_IN_NONPAGED_AREA). The blue screen references faulting driver teefer.sys.
Solution: Modified the Teefer driver to prevent this blue screen.
http://www.symantec.com/business/support/index?page=content&id=TECH206828
as of now remove the NTP,whenever you plan to upgrade to 12.1.4 you can put the NTP back
P.S: You should only install NTP on servers after proper testing of firewall rules.