[45112] in North American Network Operators' Group
Re: Methods for managing large customer/internal mgmt ACLs?
daemon@ATHENA.MIT.EDU (Stephane Bortzmeyer)
Thu Jan 17 09:20:44 2002
Message-Id: <200201171415.g0HEFRCR010557@ludwigV.sources.org>
From: Stephane Bortzmeyer <bortzmeyer@gitoyen.net>
To: Roland Dobbins <mordant@gothik.org>
Cc: nanog@merit.edu
In-reply-to: <1011275883.6385.6.camel@adsl-64-172-52-106>
(Roland Dobbins <mordant@gothik.org>'s message of
17 Jan 2002 05:58:02 PST)
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Thu, 17 Jan 2002 15:15:27 +0100
Errors-To: owner-nanog-outgoing@merit.edu
On Thursday 17 January 2002, at 5 h 58,
Roland Dobbins <mordant@gothik.org> wrote:
> I'd be grateful for insight into what tools/methods are being used out
> there for managing and deploying large numbers of large customer and/or
> internal management ACLs, specfically for Cisco devices. Is vi/RCS/tftp
> the most common toolset, or is anyone using the Cisco ACLM
May be many people are also using a custom Perl script to perform tasks
similar to ACLM?
In that case, a company which is member of Gitoyen will release RSN :-) under
the free software licence GPL a tool very similar to ACLM but without the
fancy and heavy user interface (just text files you edit with vi and store
into CVS). Also, unlike ACLM, it works not only with IOS' ACLs but also with
Ipfilter (FreeBSD), Netfilter (Linux >= 2.4), etc.
Stay tuned :-)
