I did go with suggestions to ditch Zope. Everything is done in pure Python now.
http://24.107.132.68/cgi-bin/view_filter_rules.py
ToDo (for now):
1) Implement route-to in the rule parsing (notice these don't parse correctly if you edit them).
2) Finish off the queue parsing (these don't work yet either for editing)
3) Saving/Inserting new rules
4) Implementing definitions for interfaces.
The last one is puzzling me. I'm thinking of limiting definitions to only be allowed for interfaces, or if you want a def to appear on the interface list it has to start with $IF_<name>. Any other suggestions?
The samples on there are from my firewall, so don't hack me pls ;) Remember, I'm no expert on pf syntax, so feel free to correct me if I've made some incorrect reads on the BNF.
Finally, here is the working idea:
Main Screen
|--- Checkout ruleset
|--- Rules are parsed into individual files for individual editing and syntax checking
|--- In the future, you'd be allowed to check out rulesets on different systems
|--- Save currently checked-out ruleset.
|--- this will remerge the files into the single pf.conf
|--- Edit Filter rules (what I have mostly currently done)
|--- Edit Rules
|--- Delete Rules
|--- Insert a new rule
|--- Edit Queue rules
|--- same options
|--- Edit NAT rules
|--- same options
Enjoy...
James Cammarata [EMAIL PROTECTED] www.sngx.net home: 314-966-5976 work: 314-872-2426 cell: 314-409-0583 ______________________________________________________________ Out the Ethernet, through the router, down the fiber, off another router, down the T1, past the fire-wall ..nothing but Net
