From mboxrd@z Thu Jan 1 00:00:00 1970 From: Glen Turner Subject: Re: new code; iptables-xml for iptables package. Date: Thu, 23 Nov 2006 04:07:58 +1030 Message-ID: <45648AF6.30005@aarnet.edu.au> References: <455311B5.5000600@ufomechanic.net> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Return-path: To: Netfilter Development Mailinglist In-Reply-To: <455311B5.5000600@ufomechanic.net> List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: netfilter-devel-bounces@lists.netfilter.org Errors-To: netfilter-devel-bounces@lists.netfilter.org List-Id: netfilter-devel.vger.kernel.org Amin Azez wrote: > A sample of the xml format > > > byte-count="7137573" > > > > >

tcp

> > > 8443 > > > > > > > > > > Folks, Before committing stuff which generates XML output it might be worthwhile checking if a DTD has also been supplied so that third-party tools can use and generate the XML with some assurance. If the use of the XML is private to Netfilter then then XML format offers no advantages over the standard format. In particular, folks will want something to use as a target when converting to/from Tivoli XML/Juniper XML/Cisco XML/ OASIS XACML/IETF PCM (as you can see there's no shortage of XML ACL formats, and still no real standardisation in sight despite consistent ACLs between devices being a boon to network operations). Thanks, Glen -- Glen Turner Tel: (08) 8303 3936 or +61 8 8303 3936 Australia's Academic & Research Network www.aarnet.edu.au