ꦫꦣꦺꦤ꧀ꦄꦤ꧀ꦠꦱꦺꦤ

PATH: usr / share / augeas / lenses / dist

module Iptables =
  autoload xfm

(*
Module: Iptables
   Parse the iptables file format as produced by iptables-save. The
   resulting tree is fairly simple; in particular a rule is simply
   a long list of options/switches and their values (if any)

This lens should be considered experimental
*)

let comment = Util.comment
let empty = Util.empty
let eol = Util.eol
let spc = Util.del_ws_spc
let dels = Util.del_str

let chain_name = store /[A-Za-z0-9_-]+/
let chain =
  let policy = [ label "policy" . store /ACCEPT|DROP|REJECT|-/ ] in
  let counters_eol = del /[ \t]*(\[[0-9:]+\])?[ \t]*\n/ "\n" in
    [ label "chain" .
        dels ":" . chain_name . spc . policy . counters_eol ]

let param (long:string) (short:string) =
  [ label long .
      spc . del (/--/ . long | /-/ . short) ("-" . short) . spc .
      store /(![ \t]*)?[^ \t\n!-][^ \t\n]*/ ]

(* A negatable parameter, which can either be FTW
     ! --param arg
   or
     --param ! arg
*)
let neg_param (long:string) (short:string) =
  [ label long .
      [ spc . dels "!" . label "not" ]? .
      spc . del (/--/ . long | /-/ . short) ("-" . short) . spc .
      store /(![ \t]*)?[^ \t\n!-][^ \t\n]*/ ]

let tcp_flags =
  let flags = /SYN|ACK|FIN|RST|URG|PSH|ALL|NONE/ in
  let flag_list (name:string) =
    Build.opt_list [label name . store flags] (dels ",") in
  [ label "tcp-flags" .
      spc . dels "--tcp-flags" .
      spc . flag_list "mask" . spc . flag_list "set" ]

let chain_action (n:string) (o:string) =
    [ label n .
        del (/--/ . n | o) o .
        spc . chain_name . ipt_match . eol ]

let table_rule = chain_action "append" "-A"
	       | chain_action "insert" "-I"
	       | empty

let table = [ del /\*/ "*" . label "table" . store /[a-z]+/ . eol .
                (chain|comment|table_rule)* .
                dels "COMMIT" . eol ]

let lns = (comment|empty|table)*
let xfm = transform lns (incl "/etc/sysconfig/iptables"
                       . incl "/etc/sysconfig/iptables.save"
                       . incl "/etc/iptables-save")

[+] ..
[-] mailscanner.aug [edit]
[-] access.aug [edit]
[-] gshadow.aug [edit]
[-] activemq_conf.aug [edit]
[-] gtkbookmarks.aug [edit]
[-] activemq_xml.aug [edit]
[-] hostname.aug [edit]
[-] afs_cellalias.aug [edit]
[-] mcollective.aug [edit]
[-] aliases.aug [edit]
[-] mdadm_conf.aug [edit]
[-] anacron.aug [edit]
[-] memcached.aug [edit]
[-] approx.aug [edit]
[-] group.aug [edit]
[-] phpvars.aug [edit]
[-] apt_update_manager.aug [edit]
[-] grub.aug [edit]
[-] puppet.aug [edit]
[-] aptcacherngsecurity.aug [edit]
[-] mongodbserver.aug [edit]
[-] aptconf.aug [edit]
[-] host_conf.aug [edit]
[-] aptpreferences.aug [edit]
[-] hosts.aug [edit]
[-] aptsources.aug [edit]
[-] hosts_access.aug [edit]
[-] authorized_keys.aug [edit]
[-] htpasswd.aug [edit]
[-] automaster.aug [edit]
[-] jettyrealm.aug [edit]
[-] automounter.aug [edit]
[-] mke2fs.aug [edit]
[-] avahi.aug [edit]
[-] jaas.aug [edit]
[-] backuppchosts.aug [edit]
[-] modprobe.aug [edit]
[-] bbhosts.aug [edit]
[-] jmxaccess.aug [edit]
[-] bootconf.aug [edit]
[-] modules.aug [edit]
[-] build.aug [edit]
[-] jmxpassword.aug [edit]
[-] cachefilesd.aug [edit]
[-] modules_conf.aug [edit]
[-] carbon.aug [edit]
[-] json.aug [edit]
[-] cgconfig.aug [edit]
[-] nagiosobjects.aug [edit]
[-] cgrules.aug [edit]
[-] kdump.aug [edit]
[-] channels.aug [edit]
[-] monit.aug [edit]
[-] chrony.aug [edit]
[-] multipath.aug [edit]
[-] clamav.aug [edit]
[-] keepalived.aug [edit]
[-] cobblermodules.aug [edit]
[-] known_hosts.aug [edit]
[-] cobblersettings.aug [edit]
[-] koji.aug [edit]
[-] collectd.aug [edit]
[-] mysql.aug [edit]
[-] cpanel.aug [edit]
[-] nagioscfg.aug [edit]
[-] cron.aug [edit]
[-] krb5.aug [edit]
[-] crypttab.aug [edit]
[-] netmasks.aug [edit]
[-] cups.aug [edit]
[-] ldif.aug [edit]
[-] cyrus_imapd.aug [edit]
[-] networkmanager.aug [edit]
[-] darkice.aug [edit]
[-] networks.aug [edit]
[-] debctrl.aug [edit]
[-] nrpe.aug [edit]
[-] desktop.aug [edit]
[-] ldso.aug [edit]
[-] device_map.aug [edit]
[-] lightdm.aug [edit]
[-] dhclient.aug [edit]
[-] nginx.aug [edit]
[-] dhcpd.aug [edit]
[-] limits.aug [edit]
[-] dhcpd_140.aug [edit]
[-] login_defs.aug [edit]
[-] dns_zone.aug [edit]
[-] ntpd.aug [edit]
[-] dnsmasq.aug [edit]
[-] nsswitch.aug [edit]
[-] dovecot.aug [edit]
[-] ntp.aug [edit]
[-] dpkg.aug [edit]
[-] odbc.aug [edit]
[-] dput.aug [edit]
[-] openshift_http.aug [edit]
[-] erlang.aug [edit]
[-] openshift_config.aug [edit]
[-] ethers.aug [edit]
[-] pamconf.aug [edit]
[-] exports.aug [edit]
[-] logrotate.aug [edit]
[-] fai_diskconfig.aug [edit]
[-] openvpn.aug [edit]
[-] fonts.aug [edit]
[-] pagekite.aug [edit]
[-] fstab.aug [edit]
[-] pam.aug [edit]
[-] fuse.aug [edit]
[-] passwd.aug [edit]
[-] gdm.aug [edit]
[-] httpd.aug [edit]
[-] postfix_access.aug [edit]
[-] inetd.aug [edit]
[-] pbuilder.aug [edit]
[-] inifile.aug [edit]
[-] pg_hba.aug [edit]
[-] inittab.aug [edit]
[-] pgbouncer.aug [edit]
[-] inputrc.aug [edit]
[-] logwatch.aug [edit]
[-] interfaces.aug [edit]
[-] lokkit.aug [edit]
[-] iproute2.aug [edit]
[-] mailscanner_rules.aug [edit]
[-] iptables.aug [edit]
[-] php.aug [edit]
[-] iscsid.aug [edit]
[-] lvm.aug [edit]
[-] util.aug [edit]
[-] openshift_quickstarts.aug [edit]
[-] xinetd.aug [edit]
[-] postfix_main.aug [edit]
[-] xendconfsxp.aug [edit]
[-] postfix_master.aug [edit]
[-] vfstab.aug [edit]
[-] postfix_sasl_smtpd.aug [edit]
[-] vmware_config.aug [edit]
[-] postfix_transport.aug [edit]
[-] xml.aug [edit]
[-] postfix_virtual.aug [edit]
[-] xorg.aug [edit]
[-] postgresql.aug [edit]
[-] xymon.aug [edit]
[-] properties.aug [edit]
[-] xymon_alerting.aug [edit]
[-] protocols.aug [edit]
[-] yum.aug [edit]
[-] puppet_auth.aug [edit]
[-] puppetfile.aug [edit]
[-] vsftpd.aug [edit]
[-] puppetfileserver.aug [edit]
[-] anaconda.aug [edit]
[-] pylonspaste.aug [edit]
[-] pythonpaste.aug [edit]
[-] qpid.aug [edit]
[-] quote.aug [edit]
[-] rabbitmq.aug [edit]
[-] redis.aug [edit]
[-] webmin.aug [edit]
[-] reprepro_uploaders.aug [edit]
[-] resolv.aug [edit]
[-] rhsm.aug [edit]
[-] rmt.aug [edit]
[-] rsyncd.aug [edit]
[-] rsyslog.aug [edit]
[-] rx.aug [edit]
[-] samba.aug [edit]
[-] schroot.aug [edit]
[-] securetty.aug [edit]
[-] sep.aug [edit]
[-] services.aug [edit]
[-] shadow.aug [edit]
[-] shells.aug [edit]
[-] shellvars.aug [edit]
[-] shellvars_list.aug [edit]
[-] simplelines.aug [edit]
[-] simplevars.aug [edit]
[-] sip_conf.aug [edit]
[-] slapd.aug [edit]
[-] slapd_140.aug [edit]
[-] smbusers.aug [edit]
[-] solaris_system.aug [edit]
[-] soma.aug [edit]
[-] spacevars.aug [edit]
[-] splunk.aug [edit]
[-] squid.aug [edit]
[-] ssh.aug [edit]
[-] sshd.aug [edit]
[-] sshd_140.aug [edit]
[-] sssd.aug [edit]
[-] stunnel.aug [edit]
[-] subversion.aug [edit]
[-] sudoers.aug [edit]
[-] sysconfig.aug [edit]
[-] sysconfig_route.aug [edit]
[-] sysctl.aug [edit]
[-] syslog.aug [edit]
[-] systemd.aug [edit]
[-] thttpd.aug [edit]
[-] tuned.aug [edit]
[-] up2date.aug [edit]
[-] updatedb.aug [edit]
[-] wine.aug [edit]