It is a little off-topic but some one here may
know something about.
I have seen an idea being floated:
- A firewall uses a set of rules to filter packets (a fact)
- Proposal: possibility of desigaingn a rule based system
(call it rule-system) that will insert correct rules in the
firewall (sounds ambiguous)
- Is there such a thing out there? if the propser won't
part with any more details, what kind of gusses can be
made?
1. Rule-system can interact with a user and then insert
rules in the firewall -- I think this has already been
accomplished??
2. Rule-system could look at logged information (firewall
logs) and come up with better/new rules?
3. Is there any other facet/issue that I am missing here..
It still bugs me to think of a rule-system that will insert
rules into another rule based system :-|
Any feedback will be appreciated.
-ishwar
