1*0Sstevel@tonic-gate# 2*0Sstevel@tonic-gate# block all inbound packets. 3*0Sstevel@tonic-gate# 4*0Sstevel@tonic-gateblock in from any to any 5*0Sstevel@tonic-gate# 6*0Sstevel@tonic-gate# pass through packets to and from localhost. 7*0Sstevel@tonic-gate# 8*0Sstevel@tonic-gatepass in from 127.0.0.1/32 to 127.0.0.1/32 9*0Sstevel@tonic-gate# 10*0Sstevel@tonic-gate# allow a variety of individual hosts to send any type of IP packet to any 11*0Sstevel@tonic-gate# other host. 12*0Sstevel@tonic-gate# 13*0Sstevel@tonic-gatepass in from 10.1.3.1/32 to any 14*0Sstevel@tonic-gatepass in from 10.1.3.2/32 to any 15*0Sstevel@tonic-gatepass in from 10.1.3.3/32 to any 16*0Sstevel@tonic-gatepass in from 10.1.3.4/32 to any 17*0Sstevel@tonic-gatepass in from 10.1.3.5/32 to any 18*0Sstevel@tonic-gatepass in from 10.1.0.13/32 to any 19*0Sstevel@tonic-gatepass in from 10.1.1.1/32 to any 20*0Sstevel@tonic-gatepass in from 10.1.2.1/32 to any 21*0Sstevel@tonic-gate# 22*0Sstevel@tonic-gate# 23*0Sstevel@tonic-gate# block all outbound packets. 24*0Sstevel@tonic-gate# 25*0Sstevel@tonic-gateblock out from any to any 26*0Sstevel@tonic-gate# 27*0Sstevel@tonic-gate# allow any packets destined for localhost out. 28*0Sstevel@tonic-gate# 29*0Sstevel@tonic-gatepass out from any to 127.0.0.1/32 30*0Sstevel@tonic-gate# 31*0Sstevel@tonic-gate# allow any host to send any IP packet out to a limited number of hosts. 32*0Sstevel@tonic-gate# 33*0Sstevel@tonic-gatepass out from any to 10.1.3.1/32 34*0Sstevel@tonic-gatepass out from any to 10.1.3.2/32 35*0Sstevel@tonic-gatepass out from any to 10.1.3.3/32 36*0Sstevel@tonic-gatepass out from any to 10.1.3.4/32 37*0Sstevel@tonic-gatepass out from any to 10.1.3.5/32 38*0Sstevel@tonic-gatepass out from any to 10.1.0.13/32 39*0Sstevel@tonic-gatepass out from any to 10.1.1.1/32 40*0Sstevel@tonic-gatepass out from any to 10.1.2.1/32 41