Bridged IPF Config Example Cont.
Kyle Amon,  Page 14
/etc/bridge0.rules

  # Ethernet MAC address filtering rules are processed in the
  # order in which they are added to the interface and operate
  # on the principle of first match.  If no source or destination
  # address is specified, the rule will match all frames.  See
  # the brconfig(8) man page for more information on the format
  # of this file.

  # The following example rules allow MAC address 00:11:22:33:44:55 to
  # send frames through interface rl0 to MAC address 55:44:33:22:11:00
  # and MAC address 55:44:33:22:11:00 to return frames through interface
  # rl0 to MAC address 00:11:22:33:44:55.  All other traffic on rl0 is
  # blocked.

  #pass in on rl0 src 00:11:22:33:44:55 dst 55:44:33:22:11:00
  #pass out on rl0 src 55:44:33:22:11:00 dst 00:11:22:33:44:55
  #block in on rl0
  #block out on rl0