Cover V05, I06
Article
Figure 1
Figure 2
Figure 3
Listing 1
Listing 10
Listing 11
Listing 2
Listing 3
Listing 4
Listing 5
Listing 6
Listing 7
Listing 8
Listing 9
Sidebar 1
Sidebar 2
Sidebar 3
Sidebar 4
Sidebar 5
Sidebar 6
Sidebar 7

jun96.tar


Listing 2: ipfwadm command line options

ipfwadm 2.0beta1, 1996/02/10

Usage: /sbin/ipfwadm -A command [options] (accounting)
/sbin/ipfwadm -F command [options] (forwarding firewall)
/sbin/ipfwadm -I command [options] (input firewall)
/sbin/ipfwadm -O command [options] (output firewall)
/sbin/ipfwadm -M -l [options] (masquerading entries)
/sbin/ipfwadm -h (print this help information))

Commands:
-i [policy]    insert rule (no policy for accounting rules)
-a [policy]    append rule (no policy for accounting rules)
-d [policy]    delete rule (no policy for accounting rules)
-l        list all rules of this category
-z        reset packet/byte counters of all rules of this category
-f        remove all rules of this category
-p policy    change default policy (accept/masquerade/deny/reject)
-c        check acceptance of IP packet

Options:
-P        protocol (either tcp, udp, icmp, or all)
-S address[/mask] [port ...] source specification
-D address[/mask] [port ...] destination specification
-V address    interface address
-W name    interface name
-b        bidirectional match
-e        extended output mode
-k        match TCP packets with ACK set
-n        numeric output of addresses and ports
-o        turn on kernel logging for matching packets
-t and xor    and/xor masks for TOS field
-v        verbose mode
-x        expand numbers (display exact values)
-y        match TCP packets with SYN set and ACK cleared