Project to assemble a library of application behaviors and a translator to convert them into firewall rules
This project actually serves several purposes:
- Define a common format for describing application network behaviors that can be translated into firewall rules
- Create a library of such behaviors
- Create and maintain a translator for various firewall vendors
"application":"foobar",
"inbound":
{
"ip_addrs":
{
"allowed":["1.1.1.0/24"],
"blocked":["2.2.0.0/16]
},
"ports":
{
"allowed":["514"],
"blocked":["ssh","ftp","2424"]
}
},
"outbound":
{
"allowed": ["3.3.3.3/32"],
"blocked": ["4.4.4.0/26"]
}
}
- AWS
- Cisco
- Palo Alto
- Azure
- GCP
- Fortinet
- VyOS
- Ubiquiti
- OPNsense
- pfSense
- Untangle
- iptables
- pf