Farly - Firewall Analysis and Rewrite Library


Farly translates a vendor specific firewall configuration into an easily searchable vendor independent firewall model.

Using the Farly firewall model, Perl scripts can be written to perform tasks such as firewall security audits, group or rule optimizations or large scale firewall configuration changes.

This module is a factory class which abstracts the construction of an Farly::Object::List<Farly::Object> based firewall device model.

Farly dies on error.


  use Farly;

  my $importer = Farly->new();

  my $container = $importer->process("ASA", "firewall-config.txt");

  foreach my $ce ( $container->iter() ) {
        print $ce->dump();
        print "\n"



The constructor. No arguments required.

process( <firewall type>, <configuration file>)

 my $container = $importer->process('ASA', "firewall-config.txt");

Returns Farly::Object::List<Farly::Object> firewall device model.

Valid firewall types: ASA - Cisco ASA firewall


Farly uses Log::Any for logging. You can enable logging by setting the desired Log::Any::Adapter in your Farly based Perl script.

 use Farly;
 use Log::Any::Adapter;
 # send all messages to STDOUT

 my $farly = Farly->new;

See Log::Any::Adapter for configuration details and a list of available adapters.


Trystan Johnson


  • Lukas Thiemeier <>


Farly Copyright (C) 2012 Trystan Johnson

This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program. If not, see <>.