Good afternoon!
I'm building (perl) scripts to import NML files into a (MySQL) database. At the moment, I have worked out the extract to csv files of addresse_table, service_table and rulebases. Now I'm working on getting the active rulebase, getting the MIP/VIP/etc... to fit in a model that's compatible with NetScreen policies.
Is anybody out there working on the same kind of program? Am I wasting my time as something already exists that I can use?
In our company, we have several kind of firewalls (Netscreen, PIX, Checkpoint) and want to see all the rules in one (read-only)console - view delta on one console - check that changes in rulebases are resulting from validated change requests (SarbOx constraints) - add description on rules - export part of rulebase for application admins - add link to applications to make a cleanup on application retirement - link to asset inventory to cleanup on server retirement, etc...
I already built this import for NetScreen (based on Volker Tanger scripts - be His Name be revered over the centuries) + web site display for Checkpoint policies (and have a good basis for PIX import).
Not saying that any help is welcome, I share my script with anyone who wants it.
I'm building (perl) scripts to import NML files into a (MySQL) database. At the moment, I have worked out the extract to csv files of addresse_table, service_table and rulebases. Now I'm working on getting the active rulebase, getting the MIP/VIP/etc... to fit in a model that's compatible with NetScreen policies.
Is anybody out there working on the same kind of program? Am I wasting my time as something already exists that I can use?
In our company, we have several kind of firewalls (Netscreen, PIX, Checkpoint) and want to see all the rules in one (read-only)console - view delta on one console - check that changes in rulebases are resulting from validated change requests (SarbOx constraints) - add description on rules - export part of rulebase for application admins - add link to applications to make a cleanup on application retirement - link to asset inventory to cleanup on server retirement, etc...
I already built this import for NetScreen (based on Volker Tanger scripts - be His Name be revered over the centuries) + web site display for Checkpoint policies (and have a good basis for PIX import).
Not saying that any help is welcome, I share my script with anyone who wants it.