Archive

Posts Tagged ‘Firewall’

ACL Parser Beta Available on Request

June 16th, 2011 Comments off

I get a few questions a week about changes the Cisco ACL parser. I have been working on a totally new script I am calling the ACL Parser. The script will parse Cisco ACL, Netscreen, Fortinet, and Watch Guard. I am still in beta stage, but if you would like the beta, email me directly cody AT melcara.com, and I will be happy to send it.

Cisco ACL Parser

December 13th, 2010 1 comment

>

Greeting all,
As I work with many firewalls, routers and switches, I have often wished I could parse the ACL’s into a spreadsheet. A few years back I found mangeek’s PIX ACL parser, it can be found at http://mangeek.com/portfolio/pixparser.html. I found it to be a great start to what I was looking for, however the script fell short when using object-groups and names. Also it would not parse the IOS based ACL’s. So a couple years back I made my own version of the tool. My tool was extremely ruff, but it did get the job done enough for my uses. Well, I decided to clean up the tool and fix some of the issues with object groups and names.

So I am now proud to release the ACL2CSV.PL version 0.02. The tool takes the name of a cisco configuration as an argument and then parses the data and returns a CSV file. The CSV file can then be used in your favorite spreadsheet tool for more analysis.

The tool does not do anything special with ACL’s nor does it fully look at how the ACL’s are used. But simply parses the ACL’s for review in a CSV format. I hope you enjoy the tool. I am going to doing more with object groups, inactive ACL’s and other features in the near future.

acl2csv.0.02.pl

ASA URL Filter and File Type Filter

August 15th, 2009 Comments off

Greetings All,

Attached is a Config Builder to make the ASA into a content filter.  Granted, this a very brute force way to be a content filter and should be used with extreme care, but none the less it works and works great.

This was built using ASA 8.04, but should work on any version of ASA or Pix running 7.x or higher.

ASA_URL_and_Domain Filter_with example data.xls

ip arp inspection vlan 85
ip arp inspection vlan 85 logging dhcp-bindings permit
ip arp inspection validate src-
Categories: Cisco ASA Tags: , ,