Comment 2 for bug 2043651

For some reason, it will not let me upload the inet-filter.rules... So here is the contents of the current:
...
table inet filter {
 chain input {
  type filter hook input priority filter; policy accept;
  ip saddr 127.0.0.0/8 counter packets 0 bytes 0 drop
  iif "lo" accept
  ip6 saddr ::1 counter packets 0 bytes 0 drop
                ip protocol tcp ct state established accept
                ip protocol udp ct state established accept
                ip protocol icmp ct state established accept
                tcp dport 53 accept
                udp dport 53 accept
 }
 chain forward {
  type filter hook forward priority filter; policy accept;
 }
 chain output {
  type filter hook output priority filter; policy accept;
  ip protocol tcp ct state established,related,new accept
  ip protocol udp ct state established,related,new accept
  ip protocol icmp ct state established,related,new accept
                tcp dport 80 accept
                tcp dport 443 accept
  udp dport 53 accept
  tcp dport 53 accept
 }
}
...