.TH hath 1 .SH NAME hath \- Manipulate network blocks in CIDR notation .SH SYNOPSIS \fBhath\fR [\fBregexed|reduced|duped|diffed|listed\fR] [\fB\-hb\fR] \fI\fR .SH INPUT .P The \fIinput\fR (stdin) should be a list of CIDR blocks, separated by whitespace. Empty lines will be ignored, but otherwise, malformed entries will cause an error to be displayed. .SH DESCRIPTION .P Hath is a Haskell program for working with network blocks in CIDR notation. When dealing with blocks of network addresses, there are a few things that one usually wants to do with them: .IP \(bu 2 Create a regular expression matching the CIDR block(s). This is because grep will throw up if you feed it CIDR. .IP \(bu Combine small blocks into larger ones. For example, if you have two consecutive /24s, they might combine into a larger /23. .IP \(bu View the result of block combination in a useful way. .IP \(bu List them. .P Hath does just that. It takes as its input (via stdin) a list of CIDR blocks. .SH MODES .P Hath has several modes: .IP \(bu 2 \fBRegexed\fR This computes a (Perl-compatible) regular expression matching the input CIDR blocks. It's the default mode of operation. .nf .I $ echo \(dq10.0.0.0/29 10.0.0.8/29\(dq | hath ((10)\.(0)\.(0)\.(15|14|13|12|11|10|9|8|7|6|5|4|3|2|1|0)) .fi .IP \(bu 2 \fBReduced\fR This combines small blocks into larger ones where possible, and eliminates redundant blocks. The output should be equivalent to the input, though. .nf .I $ echo \(dq10.0.0.0/24 10.0.1.0/24\(dq | hath reduced 10.0.0.0/23 .fi .IP \(bu 2 \fBDuped\fR Shows only the blocks that would be removed by reduce; that is, it shows the ones that would get combined into larger blocks or are simply redundant. .nf .I $ echo \(dq10.0.0.0/24 10.0.1.0/24\(dq | hath duped 10.0.0.0/24 10.0.1.0/24 .fi .IP \(bu 2 \fBDiffed\fR Shows what would change if you used reduce. Uses diff-like notation. .nf .I $ echo \(dq10.0.0.0/24 10.0.1.0/24\(dq | hath diffed -10.0.0.0/24 -10.0.1.0/24 +10.0.0.0/23 .fi .IP \(bu 2 \fBListed\fR List the IP addresses contained within the given CIDRs. .nf .I $ echo 192.168.0.240/29 | hath listed 192.168.0.240 192.168.0.241 192.168.0.242 192.168.0.243 192.168.0.244 192.168.0.245 192.168.0.246 192.168.0.247 .fi .SH EXAMPLES .P Use the \(dqdig\(dq command to look up the PTR records for a netblock: .nf .I $ echo 198.41.0.4/30 | hath listed | xargs -I{} dig +noall +answer -x '{}' 4.0.41.198.in-addr.arpa. 897 IN PTR a.root-servers.net. 6.0.41.198.in-addr.arpa. 900 IN PTR rs.internic.net. .fi .SH OPTIONS .IP \fB\-\-barriers\fR,\ \fB\-b\fR (regexed mode only) Place barriers in front/back of the regex to prevent, for example, '127.0.0.1' from matching '127.0.0.100'. The downside is that the resulting regexp will match something that is not an IP address. This can interfere with things like \fIgrep -o\fR. Without \fB\-\-barriers\fR, you can match things you shouldn't: .nf .I $ echo 127.0.0.100 | grep -P $(echo 127.0.0.1/32 | hath) 127.0.0.100 .fi Using \fB\-\-barriers\fR can prevent this: .nf .I $ echo 127.0.0.100 | grep -P $(echo 127.0.0.1/32 | hath -b) .I $ echo $? 1 .fi But, this may also cause the regex to match something that isn't an IP address: .nf .I $ echo x127.0.0.1x | grep -Po $(echo 127.0.0.1/32 | hath -b) x127.0.0.1x .fi .SH BUGS Send bugs to michael@orlitzky.com.