Firewall is a set of scripts (firewall, fwup, and fwdown) that implement an ipchains firewall and various forms of network address and port translation. All you have to do is read the policy file and edit it to reflect your topology and filtering policy. It supports many different types of network topology (single host, traditional forwarding, masquerading, port forwarding, alias port forwarding and NAT), up to 10 untrusted interfaces each with their own policy, and over 50 network applications. It also supports centralised administration of multiple remote firewalls (meta-firewall).
|Tags||Security Boot Init Networking Firewalls Operating System Kernels Linux Systems Administration|
|Operating Systems||POSIX Linux|
Release Notes: The migrate-policy script was added to import an existing policy file into a new policy file, making upgrading easier. Support was added for REACHOUT, TACACS+, multicast, and local PPTP server. The trojan list was updated. Reserved networks were updated. fwup was ported to LinuxRouter (including building LRP packages). Installation support for more PPP/DHCP client software packages was added. Support for selecting from among a set of policy files was added.
Release Notes: Fixed redirection support, and updated the IANA reserved networks.
Release Notes: Fixes for SNMP TRAP rules (source port 161, no return packets) and X11 client rules, and new X11 server rules.
Release Notes: Centralised administration of multiple remote firewalls, removing the installation dependency on make, a new PC Anywhere and Windows Terminal server, bugfixes, and a new kernel config/module requirements document.
Release Notes: A fix for bad tempfile creation with ipchains-Q.