[c-nsp] ACL Analysers

Sam Stickland sam_mailinglists at spacething.org
Tue May 30 05:10:20 EDT 2006

Previous message: [c-nsp] Cisco Cache Engin CE570 Problem
Next message: [c-nsp] IOS Firewall sessions
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

I'm after a tool (GPL preferred, but commercial is OK) that can take PIX
style ACLs (IOS style ACLs would be an added bonus) and let me know:

a) Which rules are in conflict/redundant (eg. "Line 13: 'permit tcp host
1.2.3.4 any' is obscured by Line 34: 'permit ip any any'")

b) Which lines in an ACL would be matched, given a particular
source/destination pair.

Sam

Previous message: [c-nsp] Cisco Cache Engin CE570 Problem
Next message: [c-nsp] IOS Firewall sessions
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the cisco-nsp mailing list