Almir Karic wrote:
diff of a loaded ruleset is not that useful (for humans) IMHO, a
better way would be to diff the ruleset (possibly excluding the
comments and spaces etc). even better way to do that would be to
JustDoIt (no diff checking whatsoever, and let the admins reload the
rule when they commit any changes to it.
With no diff it would mean that if the admin loaded a ruleset which
locked him/her out, they would have to go to the box and change the
rules, not ideal if you have alot of boxes scattered over distances.
And if we diff'ed the ruleset, how could you be sure that the ruleset
was loaded correctly, which means that the file it creates to compare
newly loaded rulesets against might not have been the currently running
config
--
Charlie Clark
Network Engineer
Lemon Computing Ltd
Unit 9
26-28 Priests Bridge
London
SW14 8TA
UK
Tel: +44 208 878 2138
Fax: +44 208 878 2163
Email: [EMAIL PROTECTED]
Site: http://www.lemon-computing.com/
Lemon Computing is a limited company registered in England & Wales under
Company No. 03697052
