CIS latest version firewall was setup to allow any tcp upd, I had over 1000 intrusion attempts logged all from Utorrent & had hardly any connectivity in Utorrent so had to revert back to a paid Security Suite. Maybe this will be fixed in 3.9 or 4.0. If a Application is set to allow any connections there should not be a need to create new rules. under network poliicy. Tried following some guides to solve it but it’s too confusing so I’ll wait for version 4.0 of CIS and try again.