iptables-xml

iptables-xml

[Frederic Beck]

Hello

I'm thinking about writing a configuration tool for iptables/ip6tables
that would generate the rules according to a definition of services
running on a network and other parameters.

i saw that within netfilter there is already an XML format used by
iptables-xml that can be converted back to the rules via an XSLT form.

I was thinking of using that same XML representation (we are planning
to use Netconf to configure remotely the devices), but i couldn't find
it anywhere.

Where can i get it ?

Does the XSLT and iptables-xml work as well for IPv6 ?

Thanks a lot for your help

Regards
Frederic

Re: iptables-xml

[Jan Engelhardt]

On Friday 2009-11-13 14:42, Frederic Beck wrote:
>
>I'm thinking about writing a configuration tool for iptables/ip6tables
>that would generate the rules according to a definition of services
>running on a network and other parameters.
>
>i saw that within netfilter there is already an XML format used by
>iptables-xml that can be converted back to the rules via an XSLT form.
>
>I was thinking of using that same XML representation (we are planning
>to use Netconf to configure remotely the devices), but i couldn't find
>it anywhere.
>
>Where can i get it ?

There is neither a DTD nor XSLT defined. Currently most projects just 
generate the rules directly, since that is easier than parsing them.