News and announcements

Adaptation for Cleanliness

Written for OpenPIX by Duncan McGreggor on 2008-10-14

Last night saw some really great new additions in OpenPIX. Despite "enable" now working and the priv mode's "interface" command supported, the most important work was actually hidden way under the covers, and it involved the use of zope.component.

The problem was that in an effort to reduce the amount of code duplication as well as manually coded references to other code, OpenPIX had accreted (in a short time) code that used inspect to perform these duties. I finally got fed up because it's just the sort of problem adaptation was meant to solve. In short, the appropriate grammar is now selected, adapted to the parser and the mode (e.g., user mode, priv mode, config mode) in order to parse the commands entered in the shell.

Next up, I'll be applying similar patterns to the code that selects which *NIX variant to support when making system calls, and which backend to use (pf, iptables, etc.).

The new NICs for my firewall should be arriving today, which means that over the next few days I should start adding code that allows me to do basic configuration at the system and pf levels. This probably also means that I'll have to work on the "flash drive" code sooner than expected, so that I don't loose info between sessions.

Great Initial Progress!

Written for OpenPIX by Duncan McGreggor on 2008-10-12

OpenPIX is off and running! It's just a little bit for now, but it's looking really nice. I've got a very basic but functional shell that I can run from the command line or log into via ssh (when the user's shell is set to it). The Pyparsing grammar is in place and working well: I've made some good progress on the unprivileged user mode, mostly with the show subcommands. Next I'll be tackling the help subcommands. Also, the grammars and commands are falling into place, providing a good starting API.

I should have my pf firewall up and running sometime in the next week, at which point I'll be wiping the dust off of my old Cisco PIX book, learning pf, and translating between the two in OpenPIX...

12 of 2 results