WYAE - FWTOOLS Mailing List Archive

RE: [fwtools] real port numbers in a rules-dump
From:	"WISNIEWSKI, DANIEL (SBCSI)"
Date:	Tue, 13 Apr 2004 11:18:41 -0400

For all AVAILABLE services
 
fw1rules.pl --objects=$OBJECTS --rules=$FWDIR/conf/$POLICY.W  --all_services
--template=$services --output=
 
 
 
This gives a file such as:
 
Name|Type|Destination Port|Source Port (low)|Source Port
(high)|pre-Match|Prolog|Members|Comment
Authenticated|group||||||telnet ftp http login|Authenticated group
bgp-tcp-179|tcp|179||||||
dest-unreach|icmp|||||||ICMP, destination unreach
echo-reply|icmp|||||||ICMP, echo reply
echo-request|icmp|||||||ICMP, echo request
exec|tcp|512||||||Remote execution (rexec)
ftp|tcp|21||||||File Transfer Protocol
ftp-data|tcp|20||||||ftp port 20
FTP-Group|group||||||ftp ftp-data|
gecho-reply|icmp|||||||ICMP, echo reply
gecho-request|icmp|||||||ICMP, echo request
gFW1_snmp|udp|260||||||Check Point VPN-1 & FireWall-1 SNMP Agent
 
 
Easy enough to manipulate -
 
 
What's the problem?
dan
 
 
 
 
 -----Original Message-----
From: reto.schuettel@ubs.com [mailto:reto.schuettel@ubs.com] 
Sent: Tuesday, April 13, 2004 11:10 AM
To: fwtools@wyae.de
Subject: [fwtools] real port numbers in a rules-dump




Hi folks!

I'm looking for an extension which translates the services
'names' into real port numbers in a rules dump. I tried to
use the tag '<<>>' in my template, but that didn't work.

Thanks!

- reto

----------------------------------------------------------
FireWallTOOLS-Mailinglist                  fwtools@wyae.de
----------------------------------------------------------
to unsubscribe send a mail to: minimalist@wyae.de with the
subject: unsubscribe fwtools 





--- StripMime Report -- processed MIME parts ---
multipart/alternative
  text/plain (text body -- kept)
  text/html
---