TCPView and Currports are tools to analyze port scanning but how to know that which port should not be on established stage there are tons of ports.
Can you name some common ports that should not be on established stage on a healthy windows OS.
It is debatable whether or not configuring port rules increases system security. Restricting programs to specific IP ranges, protocols, etc likewise adds not much, if anything, to overall security.
Some security softs will monitor\block known ports that have been abused by malware in the past - but I have seen none that monitor all ports known to be abused.
There are lists of abused ports to be found on the net. You could make a list of all the abused ports and make rules for them, but it makes no sense to put yourself through such a thing.