Why is it so hard to setup blocking of all outgoing for an exe except few ips?

I have firewall set on manually triggering alerts for any incoming outgoing communication which i manually approve or block.

I have a couple of exes that I want to allow for particular IPs when they popup (I don’t necessarily know them before hand) but want to block for everything else. If I allow for few outgoing attemps, and later on select treat application as blocked, then all previous rules get deleted. So I lose all valuable settings. Also manually setting a rule to block everything else by hand is cumbersome.

Why isn’t there easier way?