gnome-lokkit is a user friendly firewall configuration tool for Red Hat Linux. It needs internationalisation and non RH support yet.
GNU Phantom.Security is a computer-controlled security system. Using the software and a simple circuit board (diagram included) that you build, you can create a good basic security system that is computer controlled.
gShield is an iptables firewall for use with the modern series of the Linux kernel. It is easily configurable, and supports a wide range of features. It features: multiple NATs, configurable public service access, access control lists, routable protection, port-forwarding, transparent proxies, and more.
gShieldConf is a small program to edit the gShield configuration files. It is written using the gtk toolkit.
Gtk-IPTables is a gtk-based frontend for iptables written in C.
Gufw is an easy, intuitive, way to manage your Ubuntu firewall powered by ufw.
HardWall Firewall is an iptables script that does the following:- Port Forwarding, Packet Filtering, Statefull Packet Inspection, Port Redirection, Masqurade, SNAT, DNAT, NAT & Bridging - Functions as both a Workstation and IP Forwarding Firewall
High Level Firewall Language: permits writing firewalling rules using a high level language, and transforms them into rules for real softwares, like ipfilter, ipchains or cisco rules.
The Horatio system is a firewall authentication tool. The horatio server uses syslog to log the actions it takes, including log-ins, log-outs, web accesses, rollcalls, and process starts and stops. The firewall uses Linux ipchains. HTTPS support is provided using OpenSSL, and the Perl modules IO::Socket::SSL, Net::SSLeay, and HTTP::Daemon::SSL. The firewall and host list management scripts are written in Bash.
IDMS Firewall is an easy to use firewall configuration script, featuring statefull connection tracking, bandwidth limiting and bandwidth logging
(commercial) InJoy Firewall is a flexible multi-platform (Linux, Windows 2K/XP, OS/2) firewall for businesses of any size. It offers security, preconfigured policy templates, complete IPSec VPN support, gateway capabilities, intuitive management, access control, many documented deployment examples, and comprehensive documentation.
IP Filter is a TCP/IP packet filter, suitable for use in a firewall environment.
IP-Array is a Linux iptables firewall script written in bash. It allows the creation of precise, stateful rules, while remaining easy to configure. It supports VPN, traffic shaping (creation of custom HTB and SFQ qdiscs, classes, and filters), multiple LANs, DMZ, NAT, logging, MAC address matching, packet marking, syslog logging, and various sysctl settings.
Ip6wall is a firewall script for ip6tables. It features support for IPV6-mapped LANs, forwarding, port forwarding, configurable outgoing filtering, configurable public service access, access control lists, and more.
IPchains Firewalling Webmin Module
IPchains Firewalling Webmin Module allows you to easily maintain a firewall based on ipchains with the Webmin look and feel. It has three modes: Newbie: select one of five security levels, Template: Define from a table with protocols and directions what should be allowed to pass your firewall, Expert: Have the real ipchains experience by having every parameter under control. This edits a script file which all ipchains rules.
ipfreeze manages the rules insertion in the running kernel and launches ipfreeze.pl. This perl script listens on the netlink device for packets that are passed by the firewall (QUEUE target). If a packet is sent, ipfreeze get the source IP and insert a new rule in the firewall that will destroy every packets coming from that IP.
ipfwadm2ipchains is a script designed to convert ipfwadm rulesets into ipchains rulesets.
ipkungfu is an iptables-based Linux firewall. The primary design goals are security, ease of use, and performance, in that order.
ipmenu is a user interface to Netfilter/iptables, allowing you to edit firewall rules.
ipmkchains reads in a set of rule files, computes the differences between those rules and the rules that are currently in use, and executes the necessary commands to make the
rules in use match the rules from the file.
ips-qos is a flexible firewall and traffic shaping tool. It works on Fedora Core, CentOS, Debian, Ubuntu, Slackware, Mandriva, PLD, and SUSE. It was intended to give administrators more control over a shared Internet connection. It includes ips, a flexible and easy-to-use configurable firewall with the ability to control access to the Internet (or selected services) from a LAN. It also includes qos, a traffic shaping tool that measures and controls the traffic load for every computer in a LAN.
ipset-bash-completion is programmable completion code for the bash shell, to support the ipset program. It allows you to interactively retrieve and complete options, commands, set names, types, and members.
IPShutter lets you firewall off ports such as ssh, and selectively enable access with a one-time password. For example, if you want to log into the server from a friend's house, you pull out a list of one-time passwords and point the web browser at a URL that contains one password.
ipt_ACCOUNT is a high performance local network accounting system written for the Linux netfilter/iptables system.
Ipt_fw is a firewall for Linux based on iptables. It is designed for client systems. Ipt_fw outputs a shell script containing iptables commands, so inspection of the settings it creates is easy.
ipt_sysrq is an iptables target that allows you to do the same as the magic sysrq key on a keyboard does, but over the network.
iptables is an enhancement on ipchains, and is used to control packet filtering, Network Address Translation (masquerading, portforwarding, transparent proxying), and special effects. Read more
iptables-control is a fast and easy iptables filter configurator It features a step-by-step interactive configurator script, a TCP/UDP ports configurator, LAN settings for routing and masquerading, and ICMP filtering.
iptables-p2p is an iptables match module capable of matching various peer-to-peer networks by examining the application-layer protocol.
isinglass-hzd is a firewall setup script designed to protect dial-up users. It protects a user's system against security holes in programs user may not even know are running.
ITVal is an analysis tool for evaluating iptables firewall systems which provides an easy way for a system administrator to verify that his firewall provides the protection he thinks it does. ITVal can analyze multiple NAT'd firewalls connected serially
jsfirewall is a firewall system for desktops PC with a single network card. It controls iptables through a "dialog" interface, filters incoming traffic, and logs violations. It also supports PPPoE connections.
kfirewall is a small GUI application witch allows you to handle ipchains or ipfwadm rules.
KMyFirewall is an IPTables based firewall configuration tool for the KDE Desktop Environment running on Linux based systems.
Knetfilter is a KDE application designed to manage the netfilter functionalities that come with the kernels 2.4 and later.
KnutWall is an advanced iptables firewall. You don't need any prior iptables experience to set up KnutWall. All the configuration is done from a separate configuration file where you select what network interfaces to use, what ports to open, etc.
levy is a perl script which generates a basic iptables rulesets based on a given external interface and a set of ports to open. Its design is to save folks some time in creating a skeleton ruleset to work from, though it can construct a fully functional firewall with NAT support.
links2world Firewall is a very simple tool writen in C, that helps you generate iptables rules for Linux 2.4.x and newer kernels. Released under GNU General Public License, it is very easy to configure and designed to run on hosts with one or more network interfaces.
Linux IP Firewalling Chains
Linux IP Firewalling Chains is an update to (and hopefully an improvement upon) the 2.0 Linux Firewalling code, for the 2.2 Linux kernel.
LinuxMagic VPN Firewall
LinuxMagic VPN Firewall is a firewall kit that uses built-in 128 Bit Encryption, IPSEC-compatible VPN standards, and a 'no-write' design.
LutelWall is a Linux IPtables shell script written in bash for use as a stateful firewall and NAT/masquerade router for single or multiple subnets networks. It shares access to a internet connection from multiple workstations.
Mason is a tool that interactively builds a firewall using Linux' ipfwadm or ipchains firewalling. You leave mason running on the firewall machine while you are making all the kinds of connections that you want the firewall to support (and want it to block).
mmtcpfwd is a secure TCP/IP port forwarder superserver intended for linux firewalls.
MultiGate provides an easy and integrated solution designed to secure and protect networks. MultiGate contains SecurityPlugins that allow quick installation, configuration and operation of various Open Source security modules designed to enhance security and protection capabilities of the gateway.
myfw is a firewall based on iptables snipets (modules). It helps you to build your iptables firewall.
netfico is a complete Linux/netfilter (iptables) firewall and gateway configuration tool. It takes over the complete process of brining upi the network interfaces, configuring VLANs, setting IP addresses, setting routes and configure the netfilter/iptables rules.
netfilter is a set of hooks inside the Linux kernel that allows kernel modules to register callback functions with the network stack. A registered callback function is then called back for every packet that traverses the respective hook within the network stack. Read more
Netfilter2html is a script developed in AWK for filtering netfilter/iptables logs to generate HTML reports.
NetSecL-Firewall is an iptables script that protects against stealth scans, port scans, OS fingerprints, and other types of scanning.
NetSPoC is a tool for security managment of large computer networks with different security domains. It generates configuration files for packet filters controlling the borders of security domains.
Prev 50 Next 50