[lnkForumImage]
TotalShareware - Download Free Software
Confronta i prezzi di migliaia di prodotti.
Asp Forum
 Home | Login | Register | Search 


 

Forums >

comp.lang.ruby

Ruby + iptables

Michael T. Richter

8/24/2007 8:56:00 AM

I've been poking around on Rubyforge and Sourceforge and getting nowhere
on this. I've even tried to see if there was a Python lib I could crib
off of and roll my own. No dice.

What I'm looking for is a good high-level interface to iptables (as in,
basically, an iptables DSL) that would allow someone to easily read the
iptables configuration and write a new one. I found a half-finished
wrapper around libiptc with no high-level interface worth mentioning and
a whole bunch of dead links to something called ruby-iptables (but not
the actual library). I've tried my hand at wrapping libiptc myself
using SWIG and got some success, but hit the usual barrier of libiptc,
being specifically listed as not intended for general API consumption
(and strongly deprecated), not having any useful documentation worth
mentioning.

Right now I'm looking at the possibility of wrapping the iptables-save
and iptables-restore tools, providing a decent OO interface to the
experience, but if someone has already done this (and ruby-iptables
looks like it was supposed to have) I'd rather not reinvent the wheel.

So, does anybody know of any Ruby + iptables implementations already
done or in the works beyond vague statements of intent? And if I'm
going to be doing this on my own, would there be anybody experienced
with iptables/libiptc willing to collaborate on it so I don't screw it
up too badly?

--
Michael T. Richter <ttmrichter@gmail.com> (GoogleTalk:
ttmrichter@gmail.com)
When debugging, novices insert corrective code; experts remove defective
code. (Richard Pattis)
2 Answers

Michael T. Richter

8/24/2007 10:26:00 AM

0

On Fri, 2007-24-08 at 18:40 +0900, Robert Dober wrote:

> I have written such a beast, and I use it for production, it has lots of
> rough edges though and I feel that the code is overly complicated, doc is
> almost not existant, ---> not released to Rubyforge, but if you are
> intersted I can mail you the software as is and it might be a good occasion
> to write some basic doc, and who knows, maybe you would like to help out
> with it?


I'd be happy to look it over, document what's there and collaborate on
future expansion. Thanks.

--
Michael T. Richter <ttmrichter@gmail.com> (GoogleTalk:
ttmrichter@gmail.com)
I'm not schooled in the science of human factors, but I suspect surprise
is not an element of a robust user interface. (Chip Rosenthal)

Ari Brown

9/10/2007 1:59:00 AM

0

Hey!

On Aug 24, 2007, at 5:40 AM, Robert Dober wrote:

> I have written such a beast, and I use it for production, it has
> lots of
> rough edges though and I feel that the code is overly complicated,
> doc is
> almost not existant, ---> not released to Rubyforge, but if you are
> intersted I can mail you the software as is and it might be a good
> occasion
> to write some basic doc, and who knows, maybe you would like to
> help out
> with it?

Do you think I might be able to catch a glimpse of your beast here?
I'm hoping to write a nice iptables DSL, if Michael doesn't have one
out.

I'll send you a copy of my final product, too!

Thanks,
Ari
-------------------------------------------|
Nietzsche is my copilot