This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Parsing Backup File

Hello,

I am working with a company that is specialized in security testing. One of our services are firewall rule reviews where we try to determine flaws and inconsistancies in firewall rulesets[1].

Some of our customers use Astaro Gateway products. Usually, we get an export of the backup config file, set-up a box with the same patch-level, restore the config and do our analysis work.

The problem is, that this requires a large amount of effort (setting up the box, getting the same patch-level and accessing the device with the required network settings).

Thus, is there a possibility to a) export the config as plaintext (xml/csv/sql would be great) or b) is there a parser available for the config files or c) is the config file format documented so we can create our own parser?

Regards,

Marc

[1] http://www.scip.ch/?dienstleistungen.firewallrulereview

This thread was automatically locked due to age.

0 r2k over 15 years ago

Hi Marc,

in the upcoming version 8, there should be a possibility to export the config in a human-readable version. In version is this afaik not possible.

best regards from switzerland (too)
Marco
Cancel
Vote Up 0 Vote Down

Cancel
0 anonymous_02 over 15 years ago

Hi Marc,

the backup only contains "meta" configuration which is translated into "system" configuration at runtime.
You should therefore evaluate the packet filter rules, that are set to the system.
You can get them via "iptables-save" on the command line.

Regards,
Daniel
Cancel
Vote Up 0 Vote Down

Cancel