Hello,
What version of SEP 12.1 are you running?
The FW rule does not allow user to specify ipv6 address.
Regarding IPv6 support, need to distiguish between the use in policies and client settings and the use in the Symantec Endpoint Protection (SEP) architecture in general.
In Symantec Endpoint Protection (SEP) 11.x, IPv6 could only be used as a general ethernet protocol type in firewall rules. So IPv6 network traffic could be blocked or allowed completely in a rule.
SEP 12.1 has added support for IPV6 in the traffic. In SEP 12.1 the firewall and SEP engine have the ability to decode and block the traffic based on the firewall policy or based on detected attacks within the IPv6 traffic. The protection offered on IPv6 traffic in SEP 12.1 is as good as the protection offered on IPv4 traffic. Logs will show IPv6 addresses as well.
Check these Articles:
Default Symantec Endpoint Protection 12.1 RU1 Firewall Policy explanation
http://www.symantec.com/docs/TECH180569
IPv6 support in Symantec Endpoint Protection 12.1
http://www.symantec.com/docs/TECH174897
Hope that helps!!