[128887] in North American Network Operators' Group
Re: (cisco, or any) acl *reducers* out there?
daemon@ATHENA.MIT.EDU (Cat Okita)
Thu Aug 19 11:56:04 2010
Date: Thu, 19 Aug 2010 11:55:53 -0400 (EDT)
From: Cat Okita <cat@reptiles.org>
To: George Michaelson <ggm@apnic.net>
In-Reply-To: <5F0D0E5F-2BB3-43EB-B56A-F622763D78C3@apnic.net>
Cc: NANOG <nanog@nanog.org>
Reply-To: Cat Okita <cat@reptiles.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Thu, 19 Aug 2010, George Michaelson wrote:
> I have been looking at acl management s/w in the freecode space and I can find lots of tools which manage/distribute and test ACLs in routers.
>
> I'm wondering if anyone has written a parser which can construct rule-trees and get rid of the cruft, unusable, order-misorder and other issues in a large ACL pool?
Something similar to this?
http://www.hpl.hp.com/techreports/2008/HPL-2008-111.pdf
cheers!
==========================================================================
"A cat spends her life conflicted between a deep, passionate and profound
desire for fish and an equally deep, passionate and profound desire to
avoid getting wet. This is the defining metaphor of my life right now."
