M
Michael T. Richter
--=-NeXf+Pn3mmhLGqD9j2Hg
Content-Type: multipart/alternative; boundary="=-myGJ41lw8QnuIU1G89fx"
--=-myGJ41lw8QnuIU1G89fx
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
I've been poking around on Rubyforge and Sourceforge and getting nowhere
on this. I've even tried to see if there was a Python lib I could crib
off of and roll my own. No dice.
What I'm looking for is a good high-level interface to iptables (as in,
basically, an iptables DSL) that would allow someone to easily read the
iptables configuration and write a new one. I found a half-finished
wrapper around libiptc with no high-level interface worth mentioning and
a whole bunch of dead links to something called ruby-iptables (but not
the actual library). I've tried my hand at wrapping libiptc myself
using SWIG and got some success, but hit the usual barrier of libiptc,
being specifically listed as not intended for general API consumption
(and strongly deprecated), not having any useful documentation worth
mentioning.
Right now I'm looking at the possibility of wrapping the iptables-save
and iptables-restore tools, providing a decent OO interface to the
experience, but if someone has already done this (and ruby-iptables
looks like it was supposed to have) I'd rather not reinvent the wheel.
So, does anybody know of any Ruby + iptables implementations already
done or in the works beyond vague statements of intent? And if I'm
going to be doing this on my own, would there be anybody experienced
with iptables/libiptc willing to collaborate on it so I don't screw it
up too badly?
--=20
Michael T. Richter <[email protected]> (GoogleTalk:
(e-mail address removed))
When debugging, novices insert corrective code; experts remove defective
code. (Richard Pattis)
--=-myGJ41lw8QnuIU1G89fx
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 TRANSITIONAL//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; CHARSET=3DUTF-8">
<META NAME=3D"GENERATOR" CONTENT=3D"GtkHTML/3.12.1">
</HEAD>
<BODY>
I've been poking around on Rubyforge and Sourceforge and getting nowhere on=
this. I've even tried to see if there was a Python lib I could crib =
off of and roll my own. No dice.<BR>
<BR>
What I'm looking for is a good high-level interface to iptables (as in, bas=
ically, an iptables DSL) that would allow someone to easily read the iptabl=
es configuration and write a new one. I found a half-finished wrapper=
around libiptc with no high-level interface worth mentioning and a whole b=
unch of dead links to something called ruby-iptables (but not the actual li=
brary). I've tried my hand at wrapping libiptc myself using SWIG and =
got some success, but hit the usual barrier of libiptc, being specifically =
listed as <B>not</B> intended for general API consumption (and strongly dep=
recated), not having any useful documentation worth mentioning.<BR>
<BR>
Right now I'm looking at the possibility of wrapping the iptables-save and =
iptables-restore tools, providing a decent OO interface to the experience, =
but if someone has already done this (and ruby-iptables looks like it was s=
upposed to have) I'd rather not reinvent the wheel.<BR>
<BR>
So, does anybody know of any Ruby + iptables implementations already done o=
r in the works beyond vague statements of intent? And if I'm going to=
be doing this on my own, would there be anybody experienced with iptables/=
libiptc willing to collaborate on it so I don't screw it up too badly?<BR>
<BR>
<TABLE CELLSPACING=3D"0" CELLPADDING=3D"0" WIDTH=3D"100%">
<TR>
<TD>
-- <BR>
<B>Michael T. Richter</B> <<A HREF=3D"mailto:[email protected]">ttmri=
(e-mail address removed)</A>> (<B>GoogleTalk:</B> (e-mail address removed))<BR>
<I>When debugging, novices insert corrective code; experts remove defective=
code. (Richard Pattis)</I>
</TD>
</TR>
</TABLE>
</BODY>
</HTML>
--=-myGJ41lw8QnuIU1G89fx--
--=-NeXf+Pn3mmhLGqD9j2Hg
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
iD8DBQBGzpzzLqyWkKVQ54QRArcRAJ9tsErBqGHs3OG4C2/gVWriV+OHbACfbanW
3yN8boHG1ITDZ9mog/qHCUg=
=BcRg
-----END PGP SIGNATURE-----
--=-NeXf+Pn3mmhLGqD9j2Hg--
Content-Type: multipart/alternative; boundary="=-myGJ41lw8QnuIU1G89fx"
--=-myGJ41lw8QnuIU1G89fx
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
I've been poking around on Rubyforge and Sourceforge and getting nowhere
on this. I've even tried to see if there was a Python lib I could crib
off of and roll my own. No dice.
What I'm looking for is a good high-level interface to iptables (as in,
basically, an iptables DSL) that would allow someone to easily read the
iptables configuration and write a new one. I found a half-finished
wrapper around libiptc with no high-level interface worth mentioning and
a whole bunch of dead links to something called ruby-iptables (but not
the actual library). I've tried my hand at wrapping libiptc myself
using SWIG and got some success, but hit the usual barrier of libiptc,
being specifically listed as not intended for general API consumption
(and strongly deprecated), not having any useful documentation worth
mentioning.
Right now I'm looking at the possibility of wrapping the iptables-save
and iptables-restore tools, providing a decent OO interface to the
experience, but if someone has already done this (and ruby-iptables
looks like it was supposed to have) I'd rather not reinvent the wheel.
So, does anybody know of any Ruby + iptables implementations already
done or in the works beyond vague statements of intent? And if I'm
going to be doing this on my own, would there be anybody experienced
with iptables/libiptc willing to collaborate on it so I don't screw it
up too badly?
--=20
Michael T. Richter <[email protected]> (GoogleTalk:
(e-mail address removed))
When debugging, novices insert corrective code; experts remove defective
code. (Richard Pattis)
--=-myGJ41lw8QnuIU1G89fx
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 TRANSITIONAL//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; CHARSET=3DUTF-8">
<META NAME=3D"GENERATOR" CONTENT=3D"GtkHTML/3.12.1">
</HEAD>
<BODY>
I've been poking around on Rubyforge and Sourceforge and getting nowhere on=
this. I've even tried to see if there was a Python lib I could crib =
off of and roll my own. No dice.<BR>
<BR>
What I'm looking for is a good high-level interface to iptables (as in, bas=
ically, an iptables DSL) that would allow someone to easily read the iptabl=
es configuration and write a new one. I found a half-finished wrapper=
around libiptc with no high-level interface worth mentioning and a whole b=
unch of dead links to something called ruby-iptables (but not the actual li=
brary). I've tried my hand at wrapping libiptc myself using SWIG and =
got some success, but hit the usual barrier of libiptc, being specifically =
listed as <B>not</B> intended for general API consumption (and strongly dep=
recated), not having any useful documentation worth mentioning.<BR>
<BR>
Right now I'm looking at the possibility of wrapping the iptables-save and =
iptables-restore tools, providing a decent OO interface to the experience, =
but if someone has already done this (and ruby-iptables looks like it was s=
upposed to have) I'd rather not reinvent the wheel.<BR>
<BR>
So, does anybody know of any Ruby + iptables implementations already done o=
r in the works beyond vague statements of intent? And if I'm going to=
be doing this on my own, would there be anybody experienced with iptables/=
libiptc willing to collaborate on it so I don't screw it up too badly?<BR>
<BR>
<TABLE CELLSPACING=3D"0" CELLPADDING=3D"0" WIDTH=3D"100%">
<TR>
<TD>
-- <BR>
<B>Michael T. Richter</B> <<A HREF=3D"mailto:[email protected]">ttmri=
(e-mail address removed)</A>> (<B>GoogleTalk:</B> (e-mail address removed))<BR>
<I>When debugging, novices insert corrective code; experts remove defective=
code. (Richard Pattis)</I>
</TD>
</TR>
</TABLE>
</BODY>
</HTML>
--=-myGJ41lw8QnuIU1G89fx--
--=-NeXf+Pn3mmhLGqD9j2Hg
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
iD8DBQBGzpzzLqyWkKVQ54QRArcRAJ9tsErBqGHs3OG4C2/gVWriV+OHbACfbanW
3yN8boHG1ITDZ9mog/qHCUg=
=BcRg
-----END PGP SIGNATURE-----
--=-NeXf+Pn3mmhLGqD9j2Hg--