acl
acl copied to clipboard
jathanism
Network access control list and firewall policy parsing library.
[](https://renovatebot.com) Welcome to [Renovate](https://togithub.com/renovatebot/renovate)! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin. 🚦 To activate Renovate, merge this Pull Request....
![renovate[bot] avatar](https://avatars.githubusercontent.com/in/2740?v=4 "renovate[bot] avatar"){kind=avatar}
> pip install acl Defaulting to user installation because normal site-packages is not writeable Collecting acl Downloading acl-0.2.tar.gz (53 kB) ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ 53.8/53.8 kB 468.9 kB/s eta 0:00:00 Preparing metadata (setup.py)...
They are IOS-like, but differ in that you may specify CIDR prefixes for addresses, and that the "ip access-list/no ip access-list" syntax is like Cisco's "ip access-list extended", but without...
Currently the ACL parser only supports the numeric form (112) to specify vrrp as a protocol. Example: ``` term permit-vrrp { from { destination-address { 224.0.0.18/32; } protocol vrrp; }...
Here's the syntax for the match conditions I have in the filters now: ``` term evil-8065_DSCP { /* Project:"non-zero TOS value DCSP" */ from { dscp-except [ be cs0 ];...
The magic comment `acl: make discard` can be put in to an ACL term to modify the behavior of the term for the purpose of access checks. This feature needs...
See python-netfilter (which actually has a parser): https://github.com/jlaine/python-netfilter Or python-iptables (which is a low-level lib): https://github.com/ldx/python-iptables See IPTables::Parse (Perl) for regex patterns: http://www.cipherdyne.org/modules/IPTables-Parse.html
We need to make some modifications to the "make discard" behavior, especially given how the NOC staff uses this information. This is the current syntax as displayed by check_access (match...
http://support.citrix.com/proddocs/topic/netscaler-advanced-networking-92-map/ns-nw-acl-intro-wrapper-con.html Example to follow...