Research Output

Generic firewall rule compiler and modeller.

  Many types of systems have different syntax for defining firewall rules, such as Cisco devices which use ACLs and Linux firewalls which use net filters (iptables). The aim of this project is to define a generic firewall syntax, such as the one used in Al-Shaer (2004), and develop and evaluate a compiler which converts the generic format into the platform specific syntax. A basic outline of this has been created by Saliou (2006), and the project will enhance this into form which can be used in a security framework.

  • Type:


  • Date:

    30 April 2007

  • Publication Status:


  • Library of Congress:

    QA75 Electronic computers. Computer science

  • Dewey Decimal Classification:

    005.8 Data security


Geeringh, C. Generic firewall rule compiler and modeller. (Thesis). Edinburgh Napier University. Retrieved from


Firewall; Internet security; errors; security policy; rule crunching; optimisation; Generic Firewall Rule Compiler and Modeller;

Available Documents