Skip to content
/ pfFocus Public

Generate meaningful output from your pfSense configuration backup, like Markdown documentation.

License

GPL-3.0 license
290 stars 31 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

TKCERT/pfFocus

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

92 Commits

.github/workflows

.github/workflows

 
 

logos

logos

 
 

pf_focus

pf_focus

 
 

screenshots

screenshots

 
 

tests

tests

 
 

.dockerignore

.dockerignore

 
 

.gitignore

.gitignore

 
 

Dockerfile

Dockerfile

 
 

LICENSE

LICENSE

 
 

MANIFEST.in

MANIFEST.in

 
 

Makefile

Makefile

 
 

Pipfile

Pipfile

 
 

Pipfile.lock

Pipfile.lock

 
 

README.md

README.md

 
 

requirements.txt

requirements.txt

 
 

setup.py

setup.py

 
 

Repository files navigation

pfFocus

pfFocus

Check Docker

This simple tool allows you to convert a full configuration backup of a pfSense firewall into some meaningful output format, like Markdown or YAML. It enables you to focus on the important parts of your firewall configuration and allows you to get a quick overview of the most important settings.

Requirements

  • Python 3.6+
    • defusedxml==0.5.0
    • PyYAML==5.4

Screenshots

Before: Configuration backup as XML

Configuration backup as XML

After: Markdown documentation

System and Interfaces Filter rules

Features

pfFocus currently supports the following configuration sections:

  • Basic system information
  • List of interfaces, VLANs, bridges, gateways and static mappings
  • List of DHCP ranges and aliases
  • NAT rules with alias and interface resolution
  • Outbound NAT rules with alias and interface resolution
  • Filter rules with alias and interface resolution
  • DNS forwarder (DNSmasq) configuration
  • OpenVPN server and client configurations
  • Syslog and sysctl configuration

Installation

Install into existing Python environment:

pip install git+https://github.com/TKCERT/pfFocus.git#egg=pfFocus

Combine this with --user or pipx or pipenv for isolated installation.

Usage

Main formatting tool: pf-format

pf-format

Examples:

pf-format -i config-backup.xml -f md -o test.md
pf-format -i config-backup.xml -f yaml -o test.yaml

Test parsing tool: pf-parse

pf-parse [-h] input_path

Examples:

pf-parse config-backup.xml

Usage via Docker

When using pfFocus via Docker, you don't need to download it from Github, and you don't need to install Python or any libraries. Only Docker is required.

It runs this command inside Docker: pfFocus-format -q -f md -i - -o -, which means it works with STDIN and STDOUT instead of files.

docker run --rm -i ghcr.io/tkcert/pffocus < input.xml > output.md

If you want you can set up an alias for it in bash:

alias pf-format="docker run --rm -i ghcr.io/tkcert/pffocus"

Then you can use it like a normal Unix command, with pipes and redirects:

pf-format < input.xml > output.md

Roadmap

Some ideas for the future development of pfFocus:

  • Producing additional output formats, especially structured formats like CSV.
  • Using these structured formats to enable easy diff'ing of configurations.
  • Maybe functionality to correlate rule configurations of different firewalls.

Credits

  • Thomas Patzke (@thomaspatzke) for
    • valuable suggestions and feedback
  • Florian Roth (@Cyb3rOps) for
    • giving it the name pfFocus
    • the very nice and gorgeous logo

About

Generate meaningful output from your pfSense configuration backup, like Markdown documentation.

Topics

python documentation pfsense firewalls documentation-generator pfsense-backup configuration-backup

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

290 stars

Watchers

18 watching

Forks

31 forks
Report repository

Releases

1 tags

Packages 1

 

Contributors 6

Languages