OSDN -- Desenvolver e Download de Software Open Source
Estado tradução de Português translation status for pt

RSS
Download List

Projeto Descrição

360-FAAR (Firewall Analysis Audit and Repair) is an offline, command line, Perl firewall policy manipulation tool to filter, compare to logs, merge, translate, and output firewall commands for new policies, in Checkpoint dbedit, Cisco ASA, or ScreenOS commands. It is all contained in one file. It can read policy and logs for: Checkpoint FW1 (in odumper.csv / logexport format), Netscreen ScreenOS (in get config / syslog format), and Cisco ASA (show run / syslog format). It uses both inclusive and exclusive CIDR and text filters, permitting you to split large policies into smaller ones for virutalization at the same time as removing unused connectivity. It supports policy to log association, object translation, rulebase reordering and simplification, rule moves, and duplicate matching automatically. It allows you to seamlessly move rules to where you need them. 'print' mode creates a spreadsheet for your audit needs with one command.

System Requirements

System requirement is not defined
Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2013-01-30 05:47
0.3.8


Esta versão adiciona o objeto Cisco ASA 8.3 + NAT para o leitor da cisco para NAT estático e dinâmico

Objetos de rede, intervalos e IPs são traduzidos.

Executando o script com "-ajuda" ou "-h" ou "h" imprime a tela de ajuda simples.

Duas novas opções foram adicionadas para os filtros de modo "rr", para permitir que as regras de criptografia do "mesclar a partir de" e "merge para" rulebases a ser usado para mascarar regras posteriores na mesclagem de regra base.

Conectividade saída de partidas durante a filtragem de modo "rr" está agora listado usando os nomes de objeto de pacote de configuração de fonte em vez do IP CIDR binário.

Esta versão resolve o problema de infiniteloop de menu.
Tags: Major, Stable CLI, Stable, NAT, Bug Fix, cisco

This release adds Cisco ASA 8.3+ object NAT to the cisco reader for static and dynamic NAT.

Network objects,
ranges,
and IPs are translated.

Running the script with "--help" or "-h" or "h" prints the simple help screen.

Two new options have been added to the "rr" mode filters,
to allow encryption rules from the
"merge from" and "merge to" rulebases to be used to mask later rules in the merge from
rulebase.

Connectivity matches output during "rr" mode filtering are now listed using the source
configuration bundle object names instead of the binary CIDR IP's.

This release
resolves the menu infiniteloop issue.

2012-03-15 06:24
0.1.7

Esta versão adiciona um leitor de log do Cisco asa e corrige muitos bugs no Cisco e Netscreen leitores de política.
Tags: Stable
This release adds a Cisco asa log reader and fixes many bugs in the Cisco and Netscreen policy readers.

2012-03-12 07:20
0.1.6

Este é o primeiro lançamento de Freecode.
Tags: Stable
This is the first Freecode release.

Project Resources

Project Page