--- a/usr/src/cmd/svc/shell/ipf_include.sh	Tue Aug 04 06:13:32 2009 -0600
+++ b/usr/src/cmd/svc/shell/ipf_include.sh	Tue Aug 04 12:51:42 2009 -0700
@@ -774,8 +774,12 @@
 	# Get and process override policy
 	#
 	ovr_policy=`svcprop -p ${FW_CONFIG_OVR_PG}/${POLICY_PROP} $IPF_FMRI`
+	if [ "$ovr_policy" = "none" ]; then 
+		echo "# global override policy is 'none'" >$IPFILOVRCONF
+		return 0
+	fi
+
 	TEMP=`mktemp /var/run/ipf_ovr.conf.pid$$.XXXXXX`
-
 	[ "$ovr_policy" = "deny" ] && acmd="block in log quick"
 	[ "$ovr_policy" = "allow" ] && acmd="pass in log"