FireStarter provides an easy to use, yet powerful, tool for setting up, administrating and monitoring firewalls for Linux machines. FireStarter is made for the GNOME desktop. Read more hot
GuardDog is a firewall configuration utility for KDE. GuardDog is aimed at two groups of users. Novice to intermediate users who are not experts in TCP/IP networking and security, and those users who don't want the hastle of dealing with cryptic shell scripts and ipchains parameter. Read more hot
adcfw-log is a tool for analyzing firewall logs in order to extract meaningful information. It is designed to be a standalone script with very few requirements that can generate different kinds of reports, such as fully formatted reports of what had been logged, with summaries by source or destination host, the type of service, or protocol. There are also options to filter the input data by date, host, protocol, service, and so on.
AGT is a powerful console frontend to iptables, supporting nearly all of the iptables extensions. All options can be specified in a configuration file with similar syntax to 'ipf' and 'ipfw'.
Alfandega Firewall Configurator
Alfandega Firewall Configurator is a dialog based interface to simple configure a netfilter firewall. Itīs provides some configuration profiles that adjusts to most common firewall configurations.
Altimate Firewall is a small and easy-to-use firewall, based on a hardened Gentoo system. It has an intuitive and easy-to-use Web interface.
APSEND is a TCP IP/UDP/ICMP packet sender primarily used to test firewalls and other networking aspects.
Arno's IPTABLES Firewall Script
Arno's IPTABLES Firewall Script is a secure stateful firewall for both single and multi-homed machines. It supports NAT and SNAT, port forwarding, ADSL ethernet modems with both static and dynamically assigned IPs, MAC address filtering, stealth port scan detection, DMZ and DMZ-2-LAN forwarding, protection against SYN/ICMP flooding, and extensive user definable logging with rate limiting to prevent log flooding. It features support for all IP protocols and VPNs such as IPSec. and is easy to configure and highly customizable. A filter script that makes your firewall log more readable is also included.
Automatic Firewall is a script that will automatically configure a firewall for you, with no need for manual configuration on your side, no need to tell it the interfaces, ip addresses and which interface is external or internal.
Bandwidth Management Tools
Bandwidth Management Tools is a total bandwidth management solution for Linux and can be used for firewalling, traffic graphing, and shaping. It is not based on any currently-available bandwidth management software and supports packet queues, bursting, complex traffic flow hierarchies, flow groups, traffic logging, and a simple real-time monitoring front-end.
Bifrost Firewall is a firewall management interface to iptables (iptables GUI).
BlockIt is a perl script based on Guardian which looks in the Snort alert file and puts up IPTables rules.
Borderline is a firewall generator. It takes a generic rule specification as input and generated an highly optimized firewall. It features IPv6 rule generation, support for multiple interfaces, and integrated support for network zones.
brandgang offers Http firewall tunneling for Java applets with restricted network access.
CD-ROM Firewall is a Red Hat/Fedora based firewall that boots off a CD-ROM. Utilizing a headless, diskless computer it can provide services such as network address translation (NAT), virtual private network (VPN), ADSL connnectivity, DHCP, DNS, and many more.
clapf is a modular network filter for postfix. It includes a statistical (inverse chi-square) antispam module, the blackhole feature and antivirus support (clamav, AVG Linux, avast!, Kaspersky and Dr.Web) preventing virus infection as well as a cgi and a command line interface to easily train the token database.
cp2fwbuilder helps you to migrate an existing Checkpoint Firewall 1 Installation and its Rulesets to Linux with iptables or *BSD based Firewall.
DAXFi is a Python script that helps configuring the iptables/netfilter firewall included in Linux kernel 2.4.x.
Deception Toolkit is a toolkit designed to give defenders a couple of orders of magnitude advantage over attackers.
Dr.Morena is a tool to confirm the rule configuration of a firewall.
Dwall is an all-purpose firewall tool to generate an iptables firewall out of a simple configuration. It contains about 80 predefined services and comes with a simple 3 zone firewall example.
DynFw for ipchains
constantly checks /var/log/messages for packets denied
by ipchains and responds by temporarily setting up firewallrules that deny any access from the originating IPs
Easwall is an easy to manage firewall script for unix systems based on the iptables security tool.
an easy-to-use GUI for the console firewall script
ebtables is a filtering tool for a bridging firewall. The filtering is focussed on the Link Layer Ethernet frame fields. Apart from filtering, it also gives the ability to alter the Ethernet MAC addresses and implement a brouter.
Endoshield is a fully configurable easy to use firewall, which will run under the 2.2 Linux kernel (ipchains), or the 2.4 Linux Kernel (iptables). It is aimed at home users who have no knowledge of how to make their own firewalls.
EtherDam is a firewall configuration engine that relies on iptables. It presents firewall configuration as a somewhat simpler scripting language that's still flexible enough for most purposes.
(commercial) fCluster is a multi-threaded client/server redundancy application for your Linux firewall solution. fCluster is designed for the production environment with features that include: dynamic firewall synchronization, support for both ipchains and netfilter, user definable polling intervals and fail-over sequence, and email notification of a system failure.
FERM is a tool to maintain complex firewalls, without having the trouble to rewrite the complex rules over and over again. FERM allows the entire firewall rule set to be stored in a separate file, and to be loaded with one command.
FIAIF is an Intelligent Firewall: provides a highly customizable script for setting up an iptables based firewall. Unlike many other scripts, FIAIF can be truly customized allowing multiple interfaces (or rather zones)
FieryFilter is an interactive desktop firewall for Linux. FF will ask you everytime a new network connection is made if you want to allow or deny it. In future versions you will be able to generate rules from connections and thus minimize the amount of questions you are asked.
Fire-Waller reads your syslog against packet filter rows and creates HTML output of the found rows.
fireflier is a firewall tool, which is built on top of the iptables framework. You can create rules based on single incoming network packets or simply allow/deny single packets to pass. client-server, ssl, timeouting rules, filtering by application.
FireGate is a Linux IPtables script for use as a firewall and NAT/masquerade router for home networks or SOHO applications. It shares access to a single internet connection from multiple workstations, and can optionally forward all inbound HTTP, SMTP or other requests to internal servers (as opposed to a DMZ).
FireHOL is a Linux iptables firewall generator. It's goal is to be extremely abstracted so that the administrators can design firewalls of any complexity without the need to know all the details about protocols, sockets, ports, etc. Read more
Firetable is an IPtables firewall script for Linux. It has no graphical interface, and all the configuration is done via configuration files. This makes Firetable ideal for servers.
Firetero is a firewall for a single computer. Features include: Easy to use: default configuration allows all client programs (browse web, send email...) but denies access to your computer from the Internet, uses iptables syntax: no new language to learn, leverage your existing skills, uses standard /etc/init.d script and keeps configuration in standard place /etc/firetero, and creates human readable firewall (for example, ?iptables -L? output is readable).
Firewall is a set of scripts (firewall, fwup and fwdown) that implement an ipchains firewall and various forms of network address and port translation. All you have to do is read the policy file and edit it to reflect your topology and filtering policy.
Firewall Builder consists of object-oriented GUI and set of policy compilers for various firewall platforms. In Firewall Builder, firewall policy is a set of rules, each rule consists of abstract objects which represent real network objects and services (hosts, routers, firewalls, networks, protocols). Firewall Builder helps user maintain database of objects and allows policy editing using simple drag-and-drop operations.
Firewall Monitor allows you to monitor ipchains/iptables output in realtime. It supports both logging to a file/stdout and/or to tcpdump format capture logs. It also supports security features such as running non-root, and chrooting itself.
Firewall/SOSDG is a Linux Netfilter firewall designed to be simple and effective. Features include NAT support, port forwarding, basic routing/forwarding of packets, and ipv6 firewalling support.
fk is a free software replacement for the TIS fwtk.
flex-fw is a small and fast front-end for the Linux iptables utility
The Firewall Tester (FTester) is a tool designed for testing firewalls filtering policies and Intrusion Detection System (IDS) capabilities.
The tool consists of two perl scripts, a packet injector (ftest) and the listening sniffer (ftestd). The first script injects custom packets, defined in ftest.conf, with a signature in the data part while the sniffer listens for such marked packets.
a module to configure the Linux kernel packet filtering firewall using higher level abstraction than rules on input, output and forward chains. It supports masquerading and accounting as well
fwknop implements network access controls (via iptables) based on a flexible port knocking mini-language, but with a twist; it combines port knocking and passive operating system fingerprinting to make it possible to do things like only allow, say, Linux-2.4/2.6 systems to connect to your SSH daemon.
GajShield SecureGate Firewall
(commercial) GajShield SecureGate is an ICSA certified firewall that provides virus protection, bandwidth management, policy based routing, URL filtering, and a VPN gateway. Its features include stateful packet inspection, deep packet filtering, content filtering, virus detection for HTTP traffic, transparent SMTP and POP3 virus scanning, and IPSec and PPTP VPN tunneling. It blocks spyware, adware, and other malicious applications from entering an organization. It has comprehensive reporting, multi-role administration, and is easy to manage. The virus scanning policy can be defined on a per rule basis.
gfcc is a GTK+ application which can control Linux firewall policies and rules, based on ipchains package.
GfXChains is an ipchains based graphic interface to set firewall policy on a 2.2.x kernel Linux Box.
gnome-lokkit is a user friendly firewall configuration tool for Red Hat Linux. It needs internationalisation and non RH support yet.