[fw-wiz] Log summaries for IOS ACLs

From: Jason Lewis (jlewis_at_packetnexus.com)
Date: 09/03/04

Next message: Brian Ford: "Re: [fw-wiz] PIX-515 acceptable CPU usage?"

Previous message: Paul D. Robertson: "RE: [fw-wiz] Re: Flawed Surveys [was: VPN endpoints]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: firewall-wizards@honor.icsalabs.com
Date: Fri, 03 Sep 2004 16:51:46 -0400

I attempted to lock down my egress IOS ACLs and quickly found I had more
applications leaving my network than I thought. I forgot about rsync
and pop3s. I also learned that spamassassin uses 2703 for rbl checks
like razor and pyzor.

I wrote a perl script to summarize the ACLs, so I could determine what
ports would need to be opened and what ports were in use. I am sure it
could be used for other purposes and could be modified to read PIX or
other logs.

I figure it is worth sharing.

http://www.packetnexus.com/aclsumm.txt

jas
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Next message: Brian Ford: "Re: [fw-wiz] PIX-515 acceptable CPU usage?"

Previous message: Paul D. Robertson: "RE: [fw-wiz] Re: Flawed Surveys [was: VPN endpoints]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

www.derkeiler.com > Mailing-Lists > Firewall-Wizards > 2004-09