1# 2# CDDL HEADER START 3# 4# The contents of this file are subject to the terms of the 5# Common Development and Distribution License (the "License"). 6# You may not use this file except in compliance with the License. 7# 8# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 9# or http://www.opensolaris.org/os/licensing. 10# See the License for the specific language governing permissions 11# and limitations under the License. 12# 13# When distributing Covered Code, include this CDDL HEADER in each 14# file and include the License file at usr/src/OPENSOLARIS.LICENSE. 15# If applicable, add the following below this CDDL HEADER, with the 16# fields enclosed by brackets "[]" replaced with your own identifying 17# information: Portions Copyright [yyyy] [name of copyright owner] 18# 19# CDDL HEADER END 20# 21# 22# Copyright 2010 Sun Microsystems, Inc. All rights reserved. 23# Use is subject to license terms. 24# 25 26# Start by blocking everything. 27block in log all 28block out log all 29 30# Allow loopback traffic 31pass in quick on lo0 32pass out quick on lo0 33 34# Allow DHCP: in to client port, out to server port 35pass in quick proto udp from any to any port = 546 36pass out quick proto udp from any to any port = 547 37 38# Allow ICMP for IPv6 for Neighbor advertisements 39pass in quick proto ipv6-icmp from any to any 40pass out quick proto ipv6-icmp from any to any 41