Vuurmuur
Vuurmuur is a powerful firewall manager built on top of
iptables that works with Linux kernels 2.4 and 2.6.
It has a simple and easy to learn configuration that allows
both simple and complex configurations.
The
configuration can be fully configured through an Ncurses GUI, which
allows secure remote administration through SSH or on the console.
Vuurmuur
has powerful monitoring features, which allow the administrator to look
at the logs, connections and bandwidth usage in realtime. It makes use
of IPTrafficVolume for keeping track of the traffic volume per
interface.
The program is divided into three part. One
element (the middle-end) converts humanly-readable rules, hosts,
groups, networks, zones, interfaces and services into a iptables
ruleset (or optional into a bash-script). The second element is a small
daemon that converts the Netfilter
logs to easy readable logs. The
final element is an Ncurses-based user interface (the front-end)
to manage the firewall.
Features include:
Administration
- No iptables knowledge required
- Humanly readable rules syntax
- Ncurses GUI, no X required
- Portforwarding is made very simple
- Easy to setup in with NAT
- Secure default policy
- Entirely manageble through ssh and from the console
- Scriptable for integration with other tools
- Can produce a bash firewall script
- Anti-spoofing features
- Killing of unwanted connections
- Supports working with Snort_inline using QUEUE or NFQUEUE
Monitoring
- Realtime log viewing
- Realtime connection viewing
- Filtering in log viewing and connection viewing
- Basic traffic volume accounting
- Searching through old logfiles
Accounting
- Audit logging: all changes are logged
- Logging of new connections and bad packets
- Traffic volume accounting
Return
to Security Home Page
Last Updated Monday, May 05 2008 @ 08:13 AM EDT
| 
