Hello Zeratin,
This seems to be a false positive, so its ok have a firewall rule,earlier it used to block Ntoskernel.exe
[SID: 23179] Intrusion Detection alerts received on a Symantec Endpoint Protection client for ntoskrnl.exe
https://support.symantec.com/en_US/article.TECH131438.html
submit to system also
Adding software to the Symantec Whitelist
https://support.symantec.com/en_US/article.TECH132220.html