xref: /illumos-gate/usr/src/cmd/ipf/examples/example.6 (revision 88f8b78a88cbdc6d8c1af5c3e54bc49d25095c98) 
1#
2# block all TCP packets with only the SYN flag set (this is the first
3# packet sent to establish a connection) out of the SYN-ACK pair.
4#
5block in proto tcp from any to any flags S/SA
6