FIAIF is an Intelligent Firewall. It provides a highly customizable script for setting up an iptables-based firewall. Configuration is done through one configuration file for each network to which the firewall is connected. FIAIF supports masquerading, port forwarding, traffic shaping, and more.
|Operating Systems||POSIX Linux|
Release Notes: This release adds HSFC-based traffic shaping, which is optimized for VoIP setups. A problem where DHCP requests were getting dropped by the firewall has been fixed, as well as ACCEPT_LOG, which was not accepting packets correctly.
Release Notes: Significantly improved traffic shaping.
Release Notes: It is now possible to have zones covering multiple interfaces (such as ppp+) when the exact interface number is not known. There are numerous updates to TCP flag checking, and rule cleaning is updated, resulting in lesser rules being generated by FIAIF.
Release Notes: This release adds an awk script fix for Fedora and changes to scan detection to not log ACK,FIN packages.
Release Notes: Scan attacks are now logged to the system log, and improvements has been made to the rule optimizer. A bug in REDIRECT rules has been fixed, and the ICMP traceroute workaround is now only activated if the Linux kernel >= 2.4.21. IP aliases can now be used in all zone rules, and MAC addresses can now be entered in uppercase.