469 projects tagged "Firewalls"

Download Website Updated 19 May 2014 webfwlog

Screenshot
Pop 287.03
Vit 87.97

Webfwlog is a Web-based firewall log reporting and analysis tool. It allows users to design reports to use on logged firewall data in whatever configuration they desire. Included are sample reports as a starting point. Reports can be sorted with a single click, or "drilled-down" all the way to the packet level, and saved for later use. Supported log formats are netfilter, ipfilter, ipfw, ipchains, Cisco routers, Snort, and Windows XP. Netfilter support includes ulogd MySQL or PostgreSQL database logs using the iptables ULOG or NFLOG target.

Download Website Updated 12 May 2014 DeleGate

Screenshot
Pop 583.61
Vit 153.97

DeleGate is a multi-purpose application level gateway or proxy server that mediates communication of various protocols, applying cache and conversion for mediated data, controlling access from clients, and routing toward servers. It translates protocols between clients and servers, converting between IPv4 and IPv6, applying SSL (TLS) to arbitrary protocols, merging several servers into a single server view with aliasing and filtering. It can be used as a simple origin server for some protocols (HTTP, FTP, and NNTP).

Download Website Updated 10 May 2014 LEAF

Screenshot
Pop 761.37
Vit 151.32

LEAF is a secure, feature-rich, customizable embedded Linux network appliance for use in a variety of network topologies. Although it can be used in other ways, it's primarily used as a Internet gateway, router, firewall, and wireless access point.

Download No website Updated 02 May 2014 IPCop Firewall

Screenshot
Pop 576.35
Vit 38.91

IPCop Linux is a complete Linux distribution whose sole purpose is to protect the networks on which it is installed.

Download Website Updated 29 Apr 2014 fwknop

Screenshot
Pop 603.68
Vit 73.28

fwknop implements an authorization scheme called Single Packet Authorization that requires only a single encrypted packet to communicate various pieces of information, including desired access through an iptables, ipfw, or pf firewall policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap. Also supported is a robust port knocking implementation based around iptables log messages.

Download Website Updated 28 Apr 2014 ips-qos

Screenshot
Pop 138.52
Vit 1.82

ips-qos is a flexible firewall and traffic shaping tool. It was formerly offered as installers for the popular Linux distributions. The current version is available under Debian GNU/Linux. It was intended to give administrators more control over a shared Internet connection. It includes ips, a flexible and easy-to-use configurable firewall with the ability to control access to the Internet (or selected services) from a LAN. It also includes qos, a traffic shaping tool that measures and controls the traffic load for every computer in a LAN.

Download Website Updated 18 Apr 2014 libnftnl

Screenshot
Pop 35.44
Vit 6.37

libnftnl is a userspace library providing a low-level netlink programming interface (API) to the in-kernel nf_tables subsystem.

Download Website Updated 17 Apr 2014 sshdfilter

Screenshot
Pop 234.04
Vit 3.94

sshdfilter automatically blocks ssh brute force attacks by reading sshd log output in real time and adding iptables rules based on authentication failures. Block rules are created by logging on with an invalid user name, or wrongly guessing the password for an existing account. Block rules are removed after a week to maintain a small list of blocks. It also comes with a LogWatch filter.

Download Website Updated 15 Apr 2014 Arno's IPTABLES Firewall Script

Screenshot
Pop 745.12
Vit 88.67

Arno's IPTABLES Firewall Script is a secure stateful firewall for both single and multi-homed machines. It supports NAT and SNAT, port forwarding, ADSL ethernet modems with both static and dynamically assigned IPs, MAC address filtering, stealth port scan detection, DMZ support, protection against SYN/ICMP flooding, experimental IPv6 support, multi-interface/aliased-IP support, and extensive user definable logging with rate limiting to prevent log flooding. It has plugin support to add extra features (like SSH Brute Force protection and (Racoon) IPSEC support). It is easy to configure and highly customizable. A filter script that makes your firewall log more readable is also included.

No download Website Updated 14 Apr 2014 nftables

Screenshot
Pop 154.87
Vit 2.41

nftables aims to replace the existing {ip,ip6,arp,eb}tables framework. It provides a new packet filtering framework, a new userspace utility, and a compatibility layer for {ip,ip6}tables. nftables is built upon the building blocks of the Netfilter infrastructure such as the existing hooks, the connection tracking system, the userspace queueing component, and the logging subsystem.

Screenshot

Project Spotlight

DOLPHIN SMASH

A mixed-signal, mixed-language multi-level simulator.

Screenshot

Project Spotlight

SRFirewall

An easy to use, but still quite capable firewall for Netfilter/iptables.