Start with the (a duplicate copy of) Typical Corporate Environment policy, but you will need to modify the firewall rules to fit your environment.
For me personally, I found the most effective method for configuring firewall policies is to query the operating system for listening ports (assuming you have access to the server).
1) netstat - Open up a command prompt and run netstat to list active ports. To identify listening TCP ports, use:
C:\> netstat -an | find "LISTEN"
You can also use it to list UDP ports, but there is no such thing as "LISTENING" state for UDP.
2) Activity Log - Run C:\Program Files\McAfee\Host Intrusion Prevention\McAfeeFire.exe and click on the Activity Log tab to see list of traffic being blocked.
3) If the system is running Windows 7 or Windows Server 2008 (or later), you can view all kinds of network activity statistics (including open ports) using Resource Monitor (resmon.exe) which can be launched from the run prompt or by opening up Windows Task Manager and clicking on the Resource Monitor button on the Performance tab.
Adaptive mode works pretty good, but for some reason it didn't pick up all the ports I needed.