PF uses the pf.conf file for all firewall configuration information. The firewall service start method calls the pfctl command to load the pf.conf file from location specified in the firewall/rules property. To list service property values, see How to Monitor the PF Firewall on Oracle Solaris.
The default location of the pf.conf file is /etc/firewall/pf.conf and the file contains:
set directives that tune various PF firewall parameters, such as timeouts, debug level, and IP fragment reassembly. See the set command in the OPTIONS section in the pf.conf(5) man page.
Firewall rules that set your network policy. For more detail, see Packet Filter Rule Syntax.
For sample rules, see Examples of PF Rules Compared to IPF Rules and Packet Filter Macros and Tables.
For more information, see the pfctl(1M) man page.