Log summaries for IOS ACLs

[Jason Lewis <jlewis () packetnexus com>]

I attempted to lock down my egress IOS ACLs and quickly found I had more 
applications leaving my network than I thought.  I forgot about rsync 
and pop3s.  I also learned that spamassassin uses 2703 for rbl checks 
like razor and pyzor.

I wrote a perl script to summarize the ACLs, so I could determine what 
ports would need to be opened and what ports were in use. I am sure it 
could be used for other purposes and could be modified to read PIX or 
other logs.

I figure it is worth sharing.

http://www.packetnexus.com/aclsumm.txt

jas
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards