1*0Sstevel@tonic-gate# block all ICMP packets. 2*0Sstevel@tonic-gate# 3*0Sstevel@tonic-gateblock in proto icmp all 4*0Sstevel@tonic-gate# 5*0Sstevel@tonic-gate# allow in ICMP echos and echo-replies. 6*0Sstevel@tonic-gate# 7*0Sstevel@tonic-gatepass in on le1 proto icmp from any to any icmp-type echo 8*0Sstevel@tonic-gatepass in on le1 proto icmp from any to any icmp-type echorep 9*0Sstevel@tonic-gate# 10*0Sstevel@tonic-gate# block all ICMP destination unreachable packets which are port-unreachables 11*0Sstevel@tonic-gate# 12*0Sstevel@tonic-gateblock in on le1 proto icmp from any to any icmp-type unreach code 3 13