FireHOL a simple yet powerful way to configure stateful iptables firewalls. It can be used for almost any purpose, including control of any number of internal/external/virtual interfaces, control of any combination of routed traffic, setting up DMZ routers and servers, and all kinds of NAT. It provides strong protection (flooding, spoofing, etc.), transparent caches, source MAC verification, blacklists, whitelists, and more. Its goal is to be completely abstracted and powerful but also easy to use, audit, and understand.
IP-Array is a Linux iptables firewall script written in bash. It allows the creation of precise, stateful rules, while remaining easy to configure. IP-Array supports VPN, traffic shaping (creation of custom HTB and SFQ qdiscs, classes, and filters), multiple external interfaces, multiple LANs, multiple DMZs, NAT, logging, MAC address matching, packet marking, syslog logging, and various sysctl settings. It also includes some presets and autoconfig options for common needs like DNS, FTP, SMTP.
Frankenwall is a bash shell script intended to create a highly secure IPTables based Linux firewall/router with QOS/traffic shaping/bandwidth management. Be certain you know exactly what your network needs before using it. The primary focus of this project is security through an intimate understanding of your networking requirements. All configuration is done by editing text files.
slakbootIBS (Slackware Interactive Boot Scripts) is an enhanced set of replacement boot scripts for the Slackware Linux distribution. It includes a set of control and dispatch tools for configuring and booting with colorized interactive scripts. The new boot process allows the operator to select or skip start-up components in realtime. It facilitates debugging of startup problems and allows operators to maintain a common baseline to support several local configurations or multiple servers with a single set of scripts.
NetGuard is intended to be a complete, embedded firewall solution. It is based on the Debian GNU/Linux operating system, and uses iptables to effectively manage your home or corporate LAN. It's designed to run on a wrap router board, which is hardware that can be run with no fan, no noise, and less power current. NetGuard can be also run on an old PC using the generic PC version.