On the GNAC firewall list [EMAIL PROTECTED] wrote:
>I'm looking for software who can be used to maintain ip access-lists on cisco routers
>and simplify their creation.
Net Partitioner, by Solsoft.
<URL:http://www.solsoft.com/>
Gives a global view of the network and calculates all
access-lists taking into account the position of the router in
the network. We focus on making it a real possibility to apply
an "authorize only what you want and nothing else" policy to all
routers on very large networks.
The principal, even the only difficulty of a rule like
"Only authorized mailservers may exchange mail with hosts
not belonging to our organization" is making a list of the
authorized servers in question. Of course, if you find that you
forgot one, you add it to the list and just tell the program to
recompute the access-lists.
Supports NAT, time-based filtering, auditing (what can this
machine do?) and other things.
We support many routers, not only Cisco; replacing a router with
another is done without any hand-translating of access-lists.
Was this what you were looking for?
I am naturally very partial to Net Partitioner, since I work for
Solsoft; feel free to contact me (temporarily unfiltered e-mail
address <mailto:[EMAIL PROTECTED]>)
--
#include <std_disclaim.h> Lorens Kockum
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
