Configure Firewall to allow only necessary connections with the least data leaks

Hello friends!
Need help from knowledgeable users or Comodo crew.
I want to tweak firewall rules to close as many leak breaches as possible and allow only necessary traffic: just stable WiFi connection, windows updates, time sync service and specific programs I allow (browsers, media player, torrent etc).
I guess i could deal with programs (browsers, media, torrent), but im not sure how should I tweak FW for stable wifi with minimal leaks. Ive read on the web that for that purpose I need to allow only DHCP and DNS.
Please friends, help me figure this out.