[ale] What I want for Christmas - wrt IPTABLES

[Jim Lynch]

I've finally figured out what I want Santa to bring me.  It's a utility 
that I could run on a system with a fairly wide open IPTABLES 
configuration that would log all the activity and somehow let me edit 
that log and feed it into the utility to generate a set of iptables 
directives to permit only what I want to let through. 

I've been frustrated in the past a lot by what I think should work and 
doesn't.  It would even be nice to turn on a switch on iptables that 
would log attempts to get through the firewall and also suggest how to 
modify the configuration file, if you really wanted that to be permitted.

Any sort of automated help tools for configuring iptables would surely 
be appreciated.  I don't have the time or inclination to become an 
expert in all the tools I have to use. 

Maybe Santa's elves will write an AI application to accomplish this feat.

Jim.