From owner-freebsd-isp Tue Aug 25 06:18:32 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA25540 for freebsd-isp-outgoing; Tue, 25 Aug 1998 06:18:32 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from cam.grad.kiev.ua (grad-UTC-28k8.ukrtel.net [195.5.25.54]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA25535 for ; Tue, 25 Aug 1998 06:18:19 -0700 (PDT) (envelope-from Ruslan@Shevchenko.Kiev.UA) Received: from Shevchenko.Kiev.UA (cam.grad.kiev.ua [195.5.37.130] (may be forged)) by cam.grad.kiev.ua (8.8.8/8.8.5) with ESMTP id QAA00405; Tue, 25 Aug 1998 16:14:48 +0300 (EEST) Message-ID: <35E2B8C6.23C4E56@Shevchenko.Kiev.UA> Date: Tue, 25 Aug 1998 16:14:46 +0300 From: Ruslan Shevchenko Reply-To: rssh@grad.kiev.ua X-Mailer: Mozilla 4.05 [en] (X11; I; FreeBSD 2.2.5-STABLE i386) MIME-Version: 1.0 To: Karl Pielorz CC: isp@FreeBSD.ORG Subject: Re: Macro processing? - Firewall configs... References: <35E2B05E.6841AE1A@tdx.co.uk> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Karl Pielorz wrote: > > Hi All, > > Does anyone know of a simple 'language' I can use to help look after our > firewall configs? > > I've looked at M4, but it's a bit complex - all I need is some kind of > pre-processor that can go through a config file containing statements like: > > "allow tcp from anywhere to me.primary http > allow tcp from me.primary for http to anywhere established" > > And translate it to, > > "allow tcp from any to 192.168.0.1 80 > allow tcp form 192.168.0.1 80 to any established" > how about cpp ? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message