So I'm still not sure which route to go down here.
Asyn says to leave both running, Eddy says that I should disable Windows Firewall.
I'm not concerned about intrusion prevention, because my router has a built-in NAT firewall. I am concerned about effectively controlling which programs on my PC get to communicate with the outside world.