Mild, I believe this thread should be very helpful for you then: https://www.wilderssecurity.com/showthread.php?t=239750
A few months ago I spent about 30 minutes going through that thread from Stem and its one of the best posts on this forum. Pretty easy to configure Windows Firewall contrary to popular belief, only reason to go 3rd party is if you want HIPS.
I use firewall rules religiously. I have every application configured in KIS 2012 to have a few rules followed by default deny including SVCHost. Apart from having to use ranges of rather agitating size (Such as for Windows Update) I believe I've secured my system as best as possible.