1block in all 2block out all 3pass in proto udp from any to any keep state 4pass in proto tcp from any to any flags S keep state 5