Firestarter

Firestarter is an Open Source visual firewall program. The software aims to combine ease of use with powerful features, therefore serving both Linux desktop users and system administrators.

Use the firewall creation wizard to create a basic firewall, then streamline it further using the powerful dynamic rules modifiers. Open and close ports with a few clicks, or stealth your services giving access only to a select  few. Watch the real-time hit monitor as attackers probe your machine for open ports, in vain.

Firestarter makes full advantage of GNOME but also works in most environments.

Firestarter aims to provide a safe and user-friendly firewall policy¹ by default. While it protects both the firewall host itself as well as any client hosts connected to a local network from intrusion attempts, it does not impose restrictions on the services that the protected hosts themselves can access.

The main components of the Firestarter interface are:

• The firewall wizard guiding the user through configuring the application the first time you run Firestarter
• The status page provides a quick overview of the state of the firewall as well as allowing the user to start and shut it down
• The events page contains the intrusion attempt history of the firewall
• The policy page is where access policy is reviewed. The policy alone determines what is allowed through the firewall
• The preferences controls many aspects of the interface, as well as giving the user the option to enable some additional filtering functions of the firewall

¹ A firewall policy is a set of rules that together unambiguously for every connection determine whether it is allowed to pass through the firewall or not.

Firestarter

License GNU General Public License Developer Tomas Junnonen and Paul Drain Website www.fs-security.com Requirements Linux kernel 2.4 or 2.6 Linux IP Firewalling Tables (iptables) >= 1.2.3 GNOME 2.6 Support: User Manual, Firestarter Guide, How to install IPTables Firewall Configuration GUI (Firestarter) Selected Reviews: Newsforge, Linux Planet, Linux.com, taragana.com, Ars Technica

Features include:

• User friendly, easy to use, graphical interface
• A wizard walks you through setting up your firewall on your first time
• Suitable for use on desktops, servers and gateways
• Real-time firewall event monitor shows intrusion attempts as they happen
• Enables Internet connection sharing, optionally with DHCP service for the clients
• Allows you to define both inbound and outbound access policy
• Open or stealth ports, shaping your firewalling with just a few mouse clicks
• Enable port forwarding for your local network in just seconds
• Option to whitelist or blacklist traffic
• Real time firewall events view
• View active network connections, including any traffic routed through the firewall
• Advanced Linux kernel tuning features provide protection from flooding, broadcasting and spoofing
• Support for tuning ICMP parameters to stop Denial of Service (DoS) attacks
• Support for tuning ToS parameters to improve services for connected client computers
• Ability to hook up user defined scripts or rulesets before or after firewall activation
• Supports Linux kernels 2.4 and 2.6
• Translations available for many languages

Last Updated Saturday, May 03 2008 @ 03:10 AM EDT