The following perl scripts allow one to quickly and easily configure
ACL entries for filewall routers.

netsec-data.pl		- data and common subroutines
netsec			- policy for generating a firewall between the
			  company and the outside world
routerconf		- log into a router and dump new config fragment

Of interest to security weenies is the file:

	ftp-eng.cisco.com:/ftp/pub/passive-ftp.tar.Z

which contains source code for a modifed FTP client that does not need
to establish inbound TCP connections on ports > 1023 (helps you close
that big hole in your network).

No guarantees, this stuff will work or that it will protect you.
You're on your own,  I hope it helps,  but if you get hurt, don't sic
your lawyers on cisco or I.

Paul Traina
May 1996