1*b9daf172Sjmmvlog in proto tcp from any port > 0 to any 2*b9daf172Sjmmvlog in proto tcp from any to any port > 0 3*b9daf172Sjmmvpass in proto 6 from any port != 0 to any port 0 >< 65535 4*b9daf172Sjmmvpass in proto 17 from localhost port > 32000 to localhost port < 29000 5*b9daf172Sjmmvblock in proto udp from any port != \ntp to any port < echo 6*b9daf172Sjmmvblock in proto tcp from any port = smtp to any port > 25 7*b9daf172Sjmmvpass in proto tcp/udp from any port 1 >< 3 to any port 1 <> 3 8*b9daf172Sjmmvpass in proto tcp/udp from any port 2:2 to any port 10:20 9*b9daf172Sjmmvpass in log first quick proto tcp from any port > 1023 to any port = 1723 flags S keep state 10