DragonFly On-Line Manual Pages

Search: Section:  

NETSPOC(1)            User Contributed Perl Documentation           NETSPOC(1)


NAME

       Netspoc - A Network Security Policy Compiler


SYNOPSIS

       netspoc [options] {in-directory | in-file | -} [out-directory]


OPTIONS

       -check_unused_groups=0|1|warn
           Check for unused groups and servicegroups.

       -check_subnets=0|1|warn
           Check for subnets which aren't declared with 'subnet_of' or
           'route_hint'.

       -check_unenforceable=0|1|warn
           Check for unenforceable rules, i.e. no managed device between src
           and dst.

       -check_duplicate_rules=0|1|warn
           Check for duplicate rules.

       -check_redundant_rules=0|1|warn
           Check for redundant rules.

       -check_policy_unknown_owner=0|1|warn
           Check for policies where owner can't be derived.

       -check_policy_multi_owner=0|1|warn
           Check for policies where multiple owners have been derived.

       -check_transient_any_rules=0|1|warn
           Check for transient any rules.

       -[no]auto_default_route
           Generate default route to minimize number of routing entries.

       -[no]comment_acls
           Add comments to generated access lists.

       -[no]comment_routes
           Add comments to generated route commands.

       -[no]warn_pix_icmp_code
           Print warning about ignored ICMP code fields at PIX firewalls.

       -ignore_files={regex}
           Ignore these names when reading directories.

       -max_errors={integer}
           Abort after this many errors.

       -verbose
           Print progress messages.

       -quiet
           Don't print progress messages.

       -[no]time_stamps
           Print progress messages with time stamps.

       -help
           Print a brief help message and exits.

       -man
           Prints the manual page and exits.


DESCRIPTION

       Compile all files from 'in-directory' or from a single 'in-file' or
       from STDIN. Output is generated in 'out-directory' or sent to STDOUT.


COPYRIGHT AND DISCLAIMER

       (C) 2011 by Heinz Knutzen <heinzknutzen@users.berlios.de>

       http://netspoc.berlios.de

       This program is free software; you can redistribute it and/or modify it
       under the terms of the GNU General Public License as published by the
       Free Software Foundation; either version 2 of the License, or (at your
       option) any later version.

       This program is distributed in the hope that it will be useful, but
       WITHOUT ANY WARRANTY; without even the implied warranty of
       MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
       General Public License for more details.

       You should have received a copy of the GNU General Public License along
       with this program; if not, write to the Free Software Foundation, Inc.,
       59 Temple Place, Suite 330, Boston, MA  02111-1307  USA

       $Id: netspoc,v 1.34 2011/01/01 23:42:22 hk Exp $

perl v5.20.2                      2011-01-01                        NETSPOC(1)

Search: Section: