rc.firewall is configurable for dialup and static IP addresses. It is based on Linux-kernel 2.4.x, and it generates it's own configuration file. It supports specific port filtering for the internet- , intranet-, and a dmz-zone. For the DMZ-Zone, there is also a machine-specific port filtering, and redirection of specific ports of the internet-interface available. Note: Do not install this in productive environments, until you have checked the rules/tables with your own eyes.
The traffic shaper is a sophisticated but easy-to-use shell script for throttling or granting a certain bandwidth to certain connections. Additionally, it implements an easy-to-configure packet filter. Both parts are based on facilities provided by the Linux 2.4 kernel (iproute2 for the traffic shaper and netfilter with IPTables for the packet filter). The packet filter offers independent SYN/ACK check, and stateful and log rules for each configured rule.
Perl Advanced TCP Hijacking is a collection of tools for inspecting and hijacking network connections written in Perl. It consists of a packet generator, an RST daemon, a sniffer, an ICMP redirection tool, an ARP redirection tool, an IDS testing tool, and an automatic hijacking daemon for plain protocols, and features both GUI and terminal interfaces.
YpFw is a frontend to ipfw and dummynet. It was developed to ease the setting and managing of ipfw rules and dummynet pipes on FreeBSD. It features a curses text interface, which allows the user to add/delete rules, update/clear rules counters, and add/delete/configure pipes. It is not meant as a replacement to ipfw; the user will need to understand ipfw and dummynet rules and syntax.