Article	Figure 1	Figure 2	Figure 3	Listing 1
Listing 2	Listing 3	Listing 4	Listing 5	Listing 6
Listing 7	Listing 8	Listing 9	Listing 10	Listing 11
Sidebar 1	Sidebar 2	Sidebar 3	Sidebar 4	Sidebar 5	Sidebar 6	Sidebar 7	jun96.tar

Listing 4: Firewall rules for FTP

# Add input rule for Internet -> me for FTP data connection (masqueraded)
ipfwadm -I -a accept -P tcp -S 0.0.0.0/0 20 -D 194.109.13.150 1024:65535

# Add output rules for FTP data connection
ipfwadm -O -a accept -P tcp -S 0.0.0.0/0 20 -D 193.78.174.34 1024:65535
ipfwadm -O -a accept -P tcp -S 0.0.0.0/0 20 -D 193.78.174.35 1024:65535

The first rule specifies the incoming packets on the Internet interface
of the firewall. The other rules specify the  outgoing packets to the
hosts on the local net. Remember that these packets are forwarded
through the firewall  using the (masquerading) firewall rules.