onkelbeh/fwbuilder
1
0
Fork 0
mirror of https://github.com/fwbuilder/fwbuilder synced 2026-03-23 19:57:21 +01:00
Code Issues Releases Wiki Activity

fixes #1932 Add description field to generated NAT rules for ASA

Browse Source
This commit is contained in:
Vadim Kurland 2011-01-14 18:50:46 -08:00
parent 25b7da796e
commit 86584b6aac
37 changed files with 84 additions and 76 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
doc/ChangeLog
View File

@ -1,5 +1,11 @@
2011-01-14 vadim <vadim@netcitadel.com>
* NATCompiler_asa8_writers.cpp (printSDNAT): fixes #1932 "Add
description field to generated NAT rules for ASA". NAT rules
generated for ASA 8.3 and later will have "description" keyword
added, with rule label as an argument. Rule label includes
word "NAT" and rule number.
* libfwbuilder/src/fwbuilder/InetAddrMask.cpp (getOverlap): fixes
#1934 "libfwbuilder::getOverlap() incorrectly calculates overlap
between ipv4 networks". This should also fix SF bug 3156376 "Can

2
src/cisco_lib/NATCompiler_asa8_writers.cpp
View File

@ -228,6 +228,8 @@ void NATCompiler_asa8::PrintRule::printSDNAT(NATRule *rule)
if (ropt->getBool("asa8_nat_dns")) cmd << "dns";
cmd << QString("description \"%1\"").arg(rule->getLabel().c_str());
compiler->output << cmd.join(" ").toStdString() << endl;
}

2
test/pix/cluster1-1_pix1.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:22 2011 PST by vadim
! Generated Fri Jan 14 18:48:45 2011 PST by vadim
!
! Compiled for pix 7.0
! Outbound ACLs: supported

2
test/pix/cluster1-1_pix2.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:22 2011 PST by vadim
! Generated Fri Jan 14 18:48:45 2011 PST by vadim
!
! Compiled for pix 7.0
! Outbound ACLs: supported

2
test/pix/cluster1_pix1.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:22 2011 PST by vadim
! Generated Fri Jan 14 18:48:44 2011 PST by vadim
!
! Compiled for pix 7.0
! Outbound ACLs: supported

2
test/pix/cluster1_pix2.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:22 2011 PST by vadim
! Generated Fri Jan 14 18:48:45 2011 PST by vadim
!
! Compiled for pix 7.0
! Outbound ACLs: supported

2
test/pix/firewall.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:40:57 2011 PST by vadim
! Generated Fri Jan 14 18:48:20 2011 PST by vadim
!
! Compiled for pix 6.2
! Outbound ACLs: not supported

2
test/pix/firewall1.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:40:58 2011 PST by vadim
! Generated Fri Jan 14 18:48:21 2011 PST by vadim
!
! Compiled for pix 6.1
! Outbound ACLs: not supported

2
test/pix/firewall10.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:40:59 2011 PST by vadim
! Generated Fri Jan 14 18:48:22 2011 PST by vadim
!
! Compiled for pix 6.3
! Outbound ACLs: not supported

2
test/pix/firewall11.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:40:59 2011 PST by vadim
! Generated Fri Jan 14 18:48:23 2011 PST by vadim
!
! Compiled for pix 6.2
! Outbound ACLs: not supported

2
test/pix/firewall12.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:00 2011 PST by vadim
! Generated Fri Jan 14 18:48:23 2011 PST by vadim
!
! Compiled for pix 6.3
! Outbound ACLs: not supported

2
test/pix/firewall13.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:01 2011 PST by vadim
! Generated Fri Jan 14 18:48:24 2011 PST by vadim
!
! Compiled for pix 6.3
! Outbound ACLs: not supported

2
test/pix/firewall14.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:01 2011 PST by vadim
! Generated Fri Jan 14 18:48:25 2011 PST by vadim
!
! Compiled for pix 6.3
! Outbound ACLs: not supported

2
test/pix/firewall2.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:02 2011 PST by vadim
! Generated Fri Jan 14 18:48:25 2011 PST by vadim
!
! Compiled for pix 6.3
! Outbound ACLs: not supported

2
test/pix/firewall20.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:03 2011 PST by vadim
! Generated Fri Jan 14 18:48:26 2011 PST by vadim
!
! Compiled for pix 6.3
! Outbound ACLs: not supported

2
test/pix/firewall21-1.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:04 2011 PST by vadim
! Generated Fri Jan 14 18:48:27 2011 PST by vadim
!
! Compiled for pix 6.3
! Outbound ACLs: not supported

2
test/pix/firewall21.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:03 2011 PST by vadim
! Generated Fri Jan 14 18:48:27 2011 PST by vadim
!
! Compiled for pix 7.0
! Outbound ACLs: supported

2
test/pix/firewall22.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:05 2011 PST by vadim
! Generated Fri Jan 14 18:48:28 2011 PST by vadim
!
! Compiled for pix 7.0
! Outbound ACLs: supported

2
test/pix/firewall3.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:05 2011 PST by vadim
! Generated Fri Jan 14 18:48:29 2011 PST by vadim
!
! Compiled for pix 6.2
! Outbound ACLs: not supported

2
test/pix/firewall33.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:07 2011 PST by vadim
! Generated Fri Jan 14 18:48:29 2011 PST by vadim
!
! Compiled for pix 6.3
! Outbound ACLs: not supported

2
test/pix/firewall34.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:08 2011 PST by vadim
! Generated Fri Jan 14 18:48:30 2011 PST by vadim
!
! Compiled for pix 6.3
! Outbound ACLs: not supported

2
test/pix/firewall4.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:08 2011 PST by vadim
! Generated Fri Jan 14 18:48:31 2011 PST by vadim
!
! Compiled for pix 6.2
! Outbound ACLs: not supported

2
test/pix/firewall50.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:09 2011 PST by vadim
! Generated Fri Jan 14 18:48:32 2011 PST by vadim
!
! Compiled for pix 7.0
! Outbound ACLs: supported

2
test/pix/firewall6.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:10 2011 PST by vadim
! Generated Fri Jan 14 18:48:33 2011 PST by vadim
!
! Compiled for pix 6.2
! Outbound ACLs: not supported

2
test/pix/firewall8.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:11 2011 PST by vadim
! Generated Fri Jan 14 18:48:34 2011 PST by vadim
!
! Compiled for pix 6.2
! Outbound ACLs: not supported

2
test/pix/firewall80.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:11 2011 PST by vadim
! Generated Fri Jan 14 18:48:34 2011 PST by vadim
!
! Compiled for pix 8.2
! Outbound ACLs: supported

4
test/pix/firewall81.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:12 2011 PST by vadim
! Generated Fri Jan 14 18:48:35 2011 PST by vadim
!
! Compiled for pix 8.3
! Outbound ACLs: supported
@ -144,7 +144,7 @@ object network hostA:eth0
quit
!
! Rule 0 (NAT)
nat (outside,inside) source static any any destination static interface hostA:eth0 service http http
nat (outside,inside) source static any any destination static interface hostA:eth0 service http http description "0 (NAT)"

4
test/pix/firewall82.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:13 2011 PST by vadim
! Generated Fri Jan 14 18:48:36 2011 PST by vadim
!
! Compiled for pix 8.3
! Outbound ACLs: supported
@ -144,7 +144,7 @@ object network hostA:eth0
quit
!
! Rule 0 (NAT)
nat (outside,inside) source static any any destination static interface hostA:eth0 service http http
nat (outside,inside) source static any any destination static interface hostA:eth0 service http http description "0 (NAT)"

4
test/pix/firewall83.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:13 2011 PST by vadim
! Generated Fri Jan 14 18:48:36 2011 PST by vadim
!
! Compiled for pix 8.3
! Outbound ACLs: supported
@ -139,7 +139,7 @@ object service http
quit
!
! Rule 0 (NAT)
nat (inside,outside) source static hostA:eth0 interface service http http
nat (inside,outside) source static hostA:eth0 interface service http http description "0 (NAT)"

2
test/pix/firewall9.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:14 2011 PST by vadim
! Generated Fri Jan 14 18:48:37 2011 PST by vadim
!
! Compiled for pix 6.3
! Outbound ACLs: not supported

52
test/pix/firewall90.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:15 2011 PST by vadim
! Generated Fri Jan 14 18:48:38 2011 PST by vadim
!
! Compiled for pix 8.3
! Outbound ACLs: supported
@ -236,108 +236,108 @@ object-group network outside.id77971X5929.tsrc.net.1
!
! Rule 0 (NAT)
nat (inside,outside) source dynamic Internal_net interface service http http
nat (inside,outside) source dynamic Internal_net interface service http http description "0 (NAT)"
!
! Rule 1 (NAT)
nat (inside,outside) source static hostA:eth0 firewall90:FastEthernet1:ip-1 destination static spamhost1 spamhost1 service smtp smtp
nat (inside,outside) source static hostA:eth0 firewall90:FastEthernet1:ip-1 destination static spamhost1 spamhost1 service smtp smtp description "1 (NAT)"
!
! Rule 2 (NAT)
nat (inside,outside) source static hostA:eth0 interface service smtp smtp
nat (inside,outside) source static hostA:eth0 interface service smtp smtp description "2 (NAT)"
!
! Rule 3 (NAT)
nat (inside,outside) source dynamic outside.id178211X29963.osrc.net.0 firewall90:FastEthernet1:ip-1 service smtp smtp
nat (inside,outside) source dynamic outside.id178211X29963.osrc.net.0 firewall90:FastEthernet1:ip-1 service smtp smtp description "3 (NAT)"
!
! Rule 4 (NAT)
! for #1928
! note that group in OSrc includes another group
nat (inside,outside) source dynamic outside.id21353X4994.osrc.net.0 firewall90:FastEthernet1:ip-1 service smtp smtp
nat (inside,outside) source dynamic outside.id21353X4994.osrc.net.0 firewall90:FastEthernet1:ip-1 service smtp smtp description "4 (NAT)"
!
! Rule 5 (NAT)
nat (inside,outside) source dynamic test_range_1 firewall90:FastEthernet1:ip-1 destination static spamhost1 spamhost1 service smtp smtp
nat (inside,outside) source dynamic test_range_1 firewall90:FastEthernet1:ip-1 destination static spamhost1 spamhost1 service smtp smtp description "5 (NAT)"
!
! Rule 6 (NAT)
nat (inside,outside) source static hostA:eth0 firewall90:FastEthernet1:ip-1 destination static spamhost1 external_gw_1 service smtp smtp
nat (inside,outside) source static hostA:eth0 firewall90:FastEthernet1:ip-1 destination static spamhost1 external_gw_1 service smtp smtp description "6 (NAT)"
!
! Rule 7 (NAT)
! For #1907
nat (inside,outside) source dynamic hostA:eth0 outside.id130599X29063.tsrc.net.0 service smtp smtp
nat (inside,outside) source dynamic hostA:eth0 outside.id130599X29063.tsrc.net.0 service smtp smtp description "7 (NAT)"
!
! Rule 8 (NAT)
! For #1907
nat (inside,outside) source dynamic hostA:eth0 outside.id20720X27505.tsrc.net.0 interface service smtp smtp
nat (inside,outside) source dynamic hostA:eth0 outside.id20720X27505.tsrc.net.0 interface service smtp smtp description "8 (NAT)"
!
! Rule 9 (NAT)
! For #1907
nat (inside,outside) source dynamic hostA:eth0 outside.id241772X29764.tsrc.net.0 interface service smtp smtp
nat (inside,outside) source dynamic hostA:eth0 outside.id241772X29764.tsrc.net.0 interface service smtp smtp description "9 (NAT)"
!
! Rule 10 (NAT)
! For #1907
nat (inside,outside) source static hostA:eth0 hostA:eth0 service smtp smtp
nat (inside,outside) source static hostA:eth0 hostA:eth0 service smtp smtp description "10 (NAT)"
!
! Rule 11 (NAT)
! For #1907
nat (inside,outside) source dynamic hostA:eth0 outside.id643092X27990.tsrc.net.0 interface service smtp smtp
nat (inside,outside) source dynamic hostA:eth0 outside.id643092X27990.tsrc.net.0 interface service smtp smtp description "11 (NAT)"
!
! Rule 12 (NAT)
! for #1902
nat (inside,outside) source dynamic internal_subnet_1 firewall90:FastEthernet1:ip-1 dns
nat (inside,outside) source dynamic internal_subnet_1 firewall90:FastEthernet1:ip-1 dns description "12 (NAT)"
!
! Rule 13 (NAT)
! for #1902
! can't use dns with destination matching or translation
! firewall90:NAT:13: error: Option 'translate dns' can not be used in combination with destination matching or translation
nat (inside,outside) source dynamic internal_subnet_1 firewall90:FastEthernet1:ip-1 destination static spamhost1 spamhost1 dns
nat (inside,outside) source dynamic internal_subnet_1 firewall90:FastEthernet1:ip-1 destination static spamhost1 spamhost1 dns description "13 (NAT)"
!
! Rule 14 (NAT)
! for #1902
! cant use dns with service translation either
! firewall90:NAT:14: error: Option 'translate dns' can not be used in combination with service matching or translation
nat (inside,outside) source dynamic internal_subnet_1 firewall90:FastEthernet1:ip-1 service smtp smtp dns
nat (inside,outside) source dynamic internal_subnet_1 firewall90:FastEthernet1:ip-1 service smtp smtp dns description "14 (NAT)"
!
! Rule 15 (NAT)
! for #1908
! "static" vs "dynamic"
nat (inside,outside) source static hostA:eth0 firewall90:FastEthernet1:ip-1
nat (inside,outside) source static hostA:eth0 firewall90:FastEthernet1:ip-1 description "15 (NAT)"
!
! Rule 16 (NAT)
! for #1908
! "static" vs "dynamic"
nat (inside,outside) source dynamic hostA:eth0 outside_range
nat (inside,outside) source dynamic hostA:eth0 outside_range description "16 (NAT)"
!
! Rule 17 (NAT)
! for #1908 "static" vs "dynamic"
! for #1885 "named object" - create
! for #1907 "multiple objects in TSrc"
! network object to define address range, then add it to object-group
nat (inside,outside) source dynamic hostA:eth0 outside.id21121X3710.tsrc.net.0 interface
nat (inside,outside) source dynamic hostA:eth0 outside.id21121X3710.tsrc.net.0 interface description "17 (NAT)"
!
! Rule 18 (NAT)
! for #1908, #1916 "static" vs "dynamic"
! for #1907 "multiple objects in TSrc"
nat (inside,outside) source dynamic hostA:eth0 outside.id21177X3720.tsrc.net.0 interface
nat (inside,outside) source dynamic hostA:eth0 outside.id21177X3720.tsrc.net.0 interface description "18 (NAT)"
!
! Rule 19 (NAT)
! for #1908
! "static" vs "dynamic"
nat (outside,outside) source dynamic outside_range firewall90:FastEthernet1:ip-1
nat (outside,outside) source dynamic outside_range firewall90:FastEthernet1:ip-1 description "19 (NAT)"
!
! Rule 20 (NAT)
! for #1908
! "static" vs "dynamic"
nat (inside,outside) source dynamic internal_subnet_1 firewall90:FastEthernet1:ip-1
nat (inside,outside) source dynamic internal_subnet_1 firewall90:FastEthernet1:ip-1 description "20 (NAT)"
!
! Rule 21 (NAT)
! for #1908
! "static" vs "dynamic"
nat (inside,outside) source static internal_subnet_1 firewall90:FastEthernet1:ip-1
nat (inside,outside) source static internal_subnet_1 firewall90:FastEthernet1:ip-1 description "21 (NAT)"
!
! Rule 22 (NAT)
nat (outside,inside) source static any any destination static interface hostA:eth0 service http squid
nat (outside,inside) source static any any destination static interface hostA:eth0 service http squid description "22 (NAT)"
!
! Rule 23 (NAT)
! multiple objects in OSrc, ODst, OSrv and TSrc in various combinations
nat (inside,outside) source dynamic outside.id178211X29963.osrc.net.0 outside.id77971X5929.tsrc.net.0 interface destination static outside.id77971X5929.odst.net.0 outside.id77971X5929.odst.net.0 service smtp smtp
nat (inside,outside) source dynamic outside.id178211X29963.osrc.net.0 outside.id77971X5929.tsrc.net.1 interface destination static outside.id77971X5929.odst.net.0 outside.id77971X5929.odst.net.0 service smtps smtps
nat (inside,outside) source dynamic outside.id178211X29963.osrc.net.0 outside.id77971X5929.tsrc.net.0 interface destination static outside.id77971X5929.odst.net.0 outside.id77971X5929.odst.net.0 service smtp smtp description "23 (NAT)"
nat (inside,outside) source dynamic outside.id178211X29963.osrc.net.0 outside.id77971X5929.tsrc.net.1 interface destination static outside.id77971X5929.odst.net.0 outside.id77971X5929.odst.net.0 service smtps smtps description "23 (NAT)"

18
test/pix/firewall91.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:15 2011 PST by vadim
! Generated Fri Jan 14 18:48:38 2011 PST by vadim
!
! Compiled for pix 8.3
! Outbound ACLs: supported
@ -123,28 +123,28 @@ object service https
quit
!
! Rule 0 (NAT)
nat (outside,inside) source static any any destination static interface hostA:eth0
nat (outside,inside) source static any any destination static interface hostA:eth0 description "0 (NAT)"
!
! Rule 1 (NAT)
nat (outside,inside) source static any any destination static interface hostA:eth0
nat (outside,inside) source static any any destination static interface hostA:eth0 description "1 (NAT)"
!
! Rule 2 (NAT)
nat (outside,inside) source static any any destination static external_gw2 hostA:eth0
nat (outside,inside) source static any any destination static external_gw2 hostA:eth0 description "2 (NAT)"
!
! Rule 3 (NAT)
nat (outside,inside) source static any any destination static interface hostA:eth0 service http http
nat (outside,inside) source static any any destination static interface hostA:eth0 service http http description "3 (NAT)"
!
! Rule 4 (NAT)
nat (outside,inside) source static any any destination static interface hostA:eth0 service http http
nat (outside,inside) source static any any destination static interface hostA:eth0 service http http description "4 (NAT)"
!
! Rule 5 (NAT)
nat (outside,inside) source static any any destination static interface hostA:eth0 service http squid
nat (outside,inside) source static any any destination static interface hostA:eth0 service http squid description "5 (NAT)"
!
! Rule 6 (NAT)
nat (outside,inside) source static any any destination static interface hostA:eth0 service https https
nat (outside,inside) source static any any destination static interface hostA:eth0 service https https description "6 (NAT)"
!
! Rule 7 (NAT)
nat (outside,inside) source static any any destination static interface hostA:eth0 service http http
nat (outside,inside) source static any any destination static interface hostA:eth0 service http http description "7 (NAT)"

12
test/pix/firewall92.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:16 2011 PST by vadim
! Generated Fri Jan 14 18:48:39 2011 PST by vadim
!
! Compiled for pix 8.3
! Outbound ACLs: supported
@ -137,19 +137,19 @@ object-group network outside.id20655X6113.osrc.net.0
!
! Rule 0 (NAT)
nat (inside,outside) source static Internal_net Internal_net service http http
nat (inside,outside) source static Internal_net Internal_net service http http description "0 (NAT)"
!
! Rule 1 (NAT)
nat (inside,outside) source static hostA:eth0 hostA:eth0 service smtp smtp
nat (inside,outside) source static hostA:eth0 hostA:eth0 service smtp smtp description "1 (NAT)"
!
! Rule 2 (NAT)
nat (inside,outside) source static hostA:eth0 hostA:eth0 destination static spamhost1 spamhost1 service smtp smtp
nat (inside,outside) source static hostA:eth0 hostA:eth0 destination static spamhost1 spamhost1 service smtp smtp description "2 (NAT)"
!
! Rule 3 (NAT)
nat (inside,outside) source static outside.id20655X6113.osrc.net.0 outside.id20655X6113.osrc.net.0 service smtp smtp
nat (inside,outside) source static outside.id20655X6113.osrc.net.0 outside.id20655X6113.osrc.net.0 service smtp smtp description "3 (NAT)"
!
! Rule 4 (NAT)
nat (inside,outside) source static test_range_1 test_range_1 destination static spamhost1 spamhost1 service smtp smtp
nat (inside,outside) source static test_range_1 test_range_1 destination static spamhost1 spamhost1 service smtp smtp description "4 (NAT)"

2
test/pix/fwsm1.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:17 2011 PST by vadim
! Generated Fri Jan 14 18:48:40 2011 PST by vadim
!
! Compiled for fwsm 2.3
! Outbound ACLs: supported

2
test/pix/fwsm2.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:18 2011 PST by vadim
! Generated Fri Jan 14 18:48:41 2011 PST by vadim
!
! Compiled for fwsm 4.x
! Outbound ACLs: supported

2
test/pix/pix515.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:19 2011 PST by vadim
! Generated Fri Jan 14 18:48:42 2011 PST by vadim
!
! Compiled for pix 7.0
! Outbound ACLs: supported

2
test/pix/real.fw.orig
View File

@ -3,7 +3,7 @@
!
! Firewall Builder fwb_pix v4.2.0.3432
!
! Generated Fri Jan 14 18:41:20 2011 PST by vadim
! Generated Fri Jan 14 18:48:43 2011 PST by vadim
!
! Compiled for pix 6.3
! Outbound ACLs: not supported