Listing 2: ipfwadm command line options

ipfwadm 2.0beta1, 1996/02/10

Usage: /sbin/ipfwadm -A command [options] (accounting)
/sbin/ipfwadm -F command [options] (forwarding firewall)
/sbin/ipfwadm -I command [options] (input firewall)
/sbin/ipfwadm -O command [options] (output firewall)
/sbin/ipfwadm -M -l [options] (masquerading entries)
/sbin/ipfwadm -h (print this help information))

Commands:
-i [policy]    insert rule (no policy for accounting rules)
-a [policy]    append rule (no policy for accounting rules)
-d [policy]    delete rule (no policy for accounting rules)
-l        list all rules of this category
-z        reset packet/byte counters of all rules of this category
-f        remove all rules of this category
-p policy    change default policy (accept/masquerade/deny/reject)
-c        check acceptance of IP packet

Options:
-P        protocol (either tcp, udp, icmp, or all)
-S address[/mask] [port ...] source specification
-D address[/mask] [port ...] destination specification
-V address    interface address
-W name    interface name
-b        bidirectional match
-e        extended output mode
-k        match TCP packets with ACK set
-n        numeric output of addresses and ports
-o        turn on kernel logging for matching packets
-t and xor    and/xor masks for TOS field
-v        verbose mode
-x        expand numbers (display exact values)
-y        match TCP packets with SYN set and ACK cleared