Just noticed in the PF mailing list that mentioning about dfd-keeper - the dynamic firewall daemon for PF that ease the administrations of OpenBSD PF, wondefully it is written in python languagage. I won't talk about what you can or can't do with dfd-keeper since it's already mentionned here, I will rather showing quick installation of dfd-keeper which is not clear in it's INSTALL doc. Assuming you are running OpenBSD Current just like me.
Instaling needed OpenBSD package
shell>pkg_add ${PKG_PATH}zope-2.8.4.tgz
shell>pkg_add ${PKG_PATH}py-xml-0.7.1.tgz
shell>pkg_add ${PKG_PATH bzip2-1.0.3.tgz
Installing ZopeInterface
shell>cd /usr/local/src
shell>ftp http://www.zope.org/Products/ZopeInterface/3.0.1final/ZopeInterface-3.0.1.tgz
shell>tar xvzf ZopeInterface-3.0.1.tgz
shell>python ./setup.py build
shell>python ./setup.py install
Installing TwistedCore
shell>cd /usr/local/src
shell>ftp http://tmrc.mit.edu/mirror/twisted/Twisted/2.2/TwistedSumo-2006-02-12.tar.bz2
shell>bzip2 -d TwistedSumo-2006-02-12.tar.bz2
shell>tar xvf TwistedSumo-2006-02-12.tar
shell>cd TwistedSumo-2006-02-12/Twisted-2.2.0
shell>python ./setup.py install
Installing dfd_keeper
shell>ftp http://lightconsulting.com/~travis/dfd/dfd_keeper/dfd_keeper.tar.gz
hell>tar xvzf dfd_keeper.tar.gz
shell>cd dfd_keeper
shell>python ./setup.py install
Now you can test it by running
shell>./keeper_example.py --test
shell>nc localhost 8007
dfd_keeper>
To know what commands are available, just type show
dfd_keeper>show
Currently dfd_keeper is not supporting remote login since it only binds to localhost, it will only allow remote login once Travis(dfd_keeper coder) get ACL done in the future. By now you should be able to play with dfd-keeper.
Enjoy (:])
No comments:
Post a Comment