436 projects tagged "Firewalls"
Updated 16 Jun 2013
LEAF
| Pop | 906.38 |
|---|---|
| Vit | 330.99 |
LEAF is a secure, feature-rich, customizable embedded Linux network appliance for use in a variety of network topologies. Although it can be used in other ways, it's primarily used as a Internet gateway, router, firewall, and wireless access point.
Updated 06 Jun 2013
360-FAAR Firewall Analysis Audit and Repair
| Pop | 1,018.53 |
|---|---|
| Vit | 32.86 |
360-FAAR (Firewall Analysis Audit and Repair) is an offline, command line, Perl firewall policy manipulation tool to filter, compare to logs, merge, translate, and output firewall commands for new policies, in Checkpoint dbedit, Cisco ASA, or ScreenOS commands. It is all contained in one file. It can read policy and logs for: Checkpoint FW1 (in odumper.csv / logexport format), Netscreen ScreenOS (in get config / syslog format), and Cisco ASA (show run / syslog format). It uses both inclusive and exclusive CIDR and text filters, permitting you to split large policies into smaller ones for virutalization at the same time as removing unused connectivity. It supports policy to log association, object translation, rulebase reordering and simplification, rule moves, and duplicate matching automatically. It allows you to seamlessly move rules to where you need them. 'print' mode creates a spreadsheet for your audit needs with one command.
Updated 01 Jun 2013
PHREL
| Pop | 336.54 |
|---|---|
| Vit | 38.58 |
PHREL is a per host rate limiter. It will track the rate of incoming traffic on a server and insert a chain into iptables when a configured threshold is crossed. The inserted chain may either rate limit or block the offending host for a period of time. The inserted chain is automatically removed when the offending host's traffic levels return to normal. PHREL is particularly well suited to protecting nameservers (DNS) from random hosts that flood requests, and to preventing SSH brute force login attempts.
Updated 24 May 2013
fwlogwatch
| Pop | 519.50 |
|---|---|
| Vit | 76.21 |
fwlogwatch is a packet filter and firewall log analyzer with support for Linux ipchains, Linux netfilter/iptables, Solaris/BSD/HP-UX/IRIX ipfilter, Cisco IOS, Cisco PIX/ASA, Netscreen, Elsa Lancom router, and Snort IDS log files. It can output its summaries in text and HTML and has a lot of options. fwlogwatch also features a realtime anomaly response capability with a Web interface.
Updated 22 May 2013
Untangle
| Pop | 493.77 |
|---|---|
| Vit | 54.43 |
Untangle is a Linux-based network gateway with pluggable modules for network applications like spam blocking, Web filtering, anti-virus, anti-spyware, intrusion prevention, VPN, SSL VPN, firewall, and more.
Updated 11 May 2013
ipset
| Pop | 170.07 |
|---|---|
| Vit | 5.24 |
ipset allows administration of sets of IP addresses/networks, ports, MAC addresses, and interfaces, which are stored in hash or bitmap data structures. These can then be used in conjunction with iptables to do fast presence lookups.
Updated 06 May 2013
HTTPTunnel
| Pop | 402.53 |
|---|---|
| Vit | 34.79 |
HTTPTunnel is a simple client/server application for creating an HTTP tunnel between two machines, optionally via a Web proxy. This tunnel can then be used to wrap arbitrary TCP socket traffic in HTTP, thus allowing communications even through a restrictive firewall that only allows outgoing HTTP connections.
Updated 10 Apr 2013
Hardened Linux
| Pop | 107.78 |
|---|---|
| Vit | 3.65 |
Hardened Linux is a hardened and minimalized Linux distribution based on Slackware. It includes a grsecurity/PaX patched kernel, stack smashing protected and hardened packages, additional security scripts, and automatically enabled host intrusion detection.
Updated 05 Mar 2013
libnetfilter_conntrack
| Pop | 156.69 |
|---|---|
| Vit | 17.84 |
libnetfilter_conntrack is a library that allows user-space programs to interface the kernel connection tracking table of the netfilter subsystem in the Linux kernel.
Updated 05 Mar 2013
conntrack-tools
| Pop | 237.47 |
|---|---|
| Vit | 18.57 |
conntrack-tools is a set of userspace tools for Linux that allow system administrators to interact with the Connection Tracking System, the module which provides stateful packet inspection for iptables. It includes the userspace daemon conntrackd and the commandline interface conntrack.
