How do you configure your firewall (comodo or otherwise)?

Do you just allow all outgoing and \ or incoming connections for programs that you think need them?
Do you research the program and only allow outgoing \ incoming ports and \ or adresses that it supposed to use?
Do you configure it by some other method?

I’m usually using the first method.

And for a side question:

Currently comodo creates “allow all outgoing” rule for “known” apps (if “create rules for known apps” is checked).
Do you think it should create more specific rules for those apps? Like Google chrome is a known app and it’s a browser, so CIS should create “Web browser” rule set for this app, or “FTP client” rule set for FileZilla.

Parhaps add more rule sets? Like FTP server? Or rule sets for individual programs?