454 projects tagged "Firewalls"
Updated 11 May 2013
ipset
| Pop | 212.05 |
|---|---|
| Vit | 11.39 |
ipset allows administration of sets of IP addresses/networks, ports, MAC addresses, and interfaces, which are stored in hash or bitmap data structures. These can then be used in conjunction with iptables to do fast presence lookups.
Updated 06 May 2013
HTTPTunnel
| Pop | 349.15 |
|---|---|
| Vit | 64.96 |
HTTPTunnel is a simple client/server application for creating an HTTP tunnel between two machines, optionally via a Web proxy. This tunnel can then be used to wrap arbitrary TCP socket traffic in HTTP, thus allowing communications even through a restrictive firewall that only allows outgoing HTTP connections.
Updated 29 Apr 2013
LEAF
| Pop | 706.28 |
|---|---|
| Vit | 133.15 |
LEAF is a secure, feature-rich, customizable embedded Linux network appliance for use in a variety of network topologies. Although it can be used in other ways, it's primarily used as a Internet gateway, router, firewall, and wireless access point.
Updated 21 Apr 2013
PHREL
| Pop | 272.10 |
|---|---|
| Vit | 29.59 |
PHREL is a per host rate limiter. It will track the rate of incoming traffic on a server and insert a chain into iptables when a configured threshold is crossed. The inserted chain may either rate limit or block the offending host for a period of time. The inserted chain is automatically removed when the offending host's traffic levels return to normal. PHREL is particularly well suited to protecting nameservers (DNS) from random hosts that flood requests, and to preventing SSH brute force login attempts.
Updated 14 Apr 2013
360-FAAR Firewall Analysis Audit and Repair
| Pop | 943.85 |
|---|---|
| Vit | 19.45 |
360-FAAR (Firewall Analysis Audit and Repair) is an offline, command line, Perl firewall policy manipulation tool to filter, compare to logs, merge, translate, and output firewall commands for new policies, in Checkpoint dbedit, Cisco ASA, or ScreenOS commands. It is all contained in one file. It can read policy and logs for: Checkpoint FW1 (in odumper.csv / logexport format), Netscreen ScreenOS (in get config / syslog format), and Cisco ASA (show run / syslog format). It uses both inclusive and exclusive CIDR and text filters, permitting you to split large policies into smaller ones for virutalization at the same time as removing unused connectivity. It supports policy to log association, object translation, rulebase reordering and simplification, rule moves, and duplicate matching automatically. It allows you to seamlessly move rules to where you need them. 'print' mode creates a spreadsheet for your audit needs with one command.
Updated 10 Apr 2013
Hardened Linux
| Pop | 104.88 |
|---|---|
| Vit | 3.65 |
Hardened Linux is a hardened and minimalized Linux distribution based on Slackware. It includes a grsecurity/PaX patched kernel, stack smashing protected and hardened packages, additional security scripts, and automatically enabled host intrusion detection.
Updated 05 Mar 2013
libnetfilter_conntrack
| Pop | 210.53 |
|---|---|
| Vit | 21.22 |
libnetfilter_conntrack is a library that allows user-space programs to interface the kernel connection tracking table of the netfilter subsystem in the Linux kernel.
Updated 05 Mar 2013
conntrack-tools
| Pop | 310.31 |
|---|---|
| Vit | 22.08 |
conntrack-tools is a set of userspace tools for Linux that allow system administrators to interact with the Connection Tracking System, the module which provides stateful packet inspection for iptables. It includes the userspace daemon conntrackd and the commandline interface conntrack.
Updated 05 Mar 2013
ulogd
| Pop | 413.72 |
|---|---|
| Vit | 30.73 |
The Userspace Logging Daemon (ulogd) is a flexible framework for extensive logging of packets on a firewall machine. ulogd uses the ULOG target of iptables/netfilter, the packet filtering framework of Linux 2.4 and 2.6. It supports binary plugins for adding packet interpreters and output-targets (e.g., for logging into databases, user-defined filetypes, etc.).
Updated 04 Mar 2013
nfacct
| Pop | 126.11 |
|---|---|
| Vit | 3.14 |
nfacct is a command line utility used to create, retrieve, and delete Netfilter accounting objects.
