capirca
netbox-acls
capirca | netbox-acls | |
---|---|---|
9 | 1 | |
753 | 73 | |
1.7% | - | |
5.6 | 6.7 | |
15 days ago | 5 days ago | |
Python | Python | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
capirca
-
Automated ACL Configuration
Capirca could help with some of that https://github.com/google/capirca
- Is there any Linux CLI app I can use to compress a huge list of CIDRs to their optimum form?
-
Aerleon a vendor agnostic firewall management system
Great question! Fortinet themselves have an open PR on Capirca which you can view here https://github.com/google/capirca/pull/222 It has been in a stalemate for years now because of CLA issues. I reached out to people I know there while I was quietly forking and I get the feeling they have lost steam dealing with Google on this which I don't blame them for. I pinged them again since we launched and if I don't hear anything I will begin to make my own since I know lots of people want it.
-
centralized Linux firewall management
Sadly there's not much choice for Open Source software. FWBuilder is good (also supports Cisco and Procurve devices as well as iptables) but rather old. Capirca is actively maintained and supports a lot of target devices. Sadly I think that's about it for the open source policy management tools.
-
What's everyone using for centralized management and deployment of switch and router ACLs?
Have you looked at Capirca for the multi-vendor ACL generation part of it?
-
Capirca
Capirca uses common definitions of networks, services and high-level policy files to generate network ACLs. This multi-platform solution was originally developed by Google for their own use but is now open source. rankinrez finds it a good way to document firewall rules and objects.
- A Good Way to Document Firewall Rules & Objects?
-
Netbox for Firewall Rules?
You could use capirca https://github.com/google/capirca I wrote a plugin that allows you to manage the ACLs in NetBox. See https://github.com/991jo/netbox_capirca_plugin Warning: The Features are currently very limited and it does not yet work with NetBox 3. The code is almost finished for 3.1, I will probably be able to release it next week.
- ACL and Network Flow Visualization Tool
netbox-acls
-
What's everyone using for centralized management and deployment of switch and router ACLs?
If you’re using netbox , have a look at netbook-acls . Haven’t used it myself yet, but I’ve kept it in my „to look into“ tab group for when I need it.
What are some alternatives?
netbox_capirca_plugin - A Plugin to manage ACLs and Firewall rules with capirca inside NetBox.
netbox-ddns - Dynamic DNS Connector for NetBox
nftables - Ansible role to manage Nftables rules and packages.
netbox-topology-views - A netbox plugin that draws topology views
iprange - manage IP ranges
netbox-dns - Netbox Dns is a netbox plugin for managing zone, nameserver and record inventory.
cli - Official Command Line Interface for the IPinfo API (IP geolocation and other types of IP data)
nextbox-ui-plugin - A topology visualization plugin for Netbox powered by NextUI Toolkit
fwbuilder - A clone of the SourceForge fwbuilder repostiory
ntc-netbox-plugin-onboarding - A plugin for NetBox to easily onboard new devices.
aerleon - Multi-platform ACL generation system
netbox-bgp - NetBox plugin for BGP related objects documentation