[c-nsp] Converting Junos firewalls to Cisco ACL
Ian MacKinnon
ian.mackinnon at lumison.net
Tue Apr 17 05:52:02 EDT 2007
Hi all,
Has anybody seen a tool for converting Junos firewall rules into Cisco
ACL's?
I know Juniper have one to go the other way.
I have several hundred to do, and manually will be a pain and liable to
error.
Junos rules look like :-
filter test-out {
term permit_tcp_established {
from {
tcp-established;
}
then accept;
}
term permit_database_access {
from {
source-address {
xxx.xxx.xxx.xxx/32;
yyy.yyy.yyy.yyy/29;
}
destination-port 5432;
}
then accept;
term default_reject {
then {
log;
syslog;
reject;
}
}
}
--
This email and any files transmitted with it are confidential and intended
solely for the use of the individual or entity to whom they are addressed.
If you have received this email in error please notify the sender. Any
offers or quotation of service are subject to formal specification.
Errors and omissions excepted. Please note that any views or opinions
presented in this email are solely those of the author and do not
necessarily represent those of Lumison, nplusone or lightershade ltd.
Finally, the recipient should check this email and any attachments for the
presence of viruses. Lumison, nplusone and lightershade ltd accepts no
liability for any damage caused by any virus transmitted by this email.
--
--
Virus scanned by Lumison.
More information about the cisco-nsp
mailing list