SmoothWall Express is a network firewall, designed with home and small business users in mind. It is based upon a security-hardened subset of the GNU/Linux operating system and is completely free to use, download, and distribute. SmoothWall Express offers facilities and features normally only seen in expensive commercial offerings.
fCluster is a multi-threaded client/server redundancy application for your Linux firewall solution. fCluster is designed for the production environment with features that include: dynamic firewall synchronization, support for both ipchains and netfilter, user definable polling intervals and fail-over sequence, and email notification of a system failure. It also includes a Perl administration utility that allows you to configure both the server and the client from one machine, and view the status of the local and remote machines.
Fd Linux is a mini floppy distribution of Linux set to fit on 1 floppy disk (kernel and root fs are combined). The sole purpose of this floppy distribution is to provide new Linux users with low-end machines (such as a 386) a very useful set of networking related binaries that can be easily accessed at any time, and which can be used in almost any networked environment (libraries, colleges, offices, small home LANs, dorm rooms, etc.).
Zorp is a proxy firewall suite with its core architecture is built around today's security demands: it uses application level proxies, is modular and component based, uses a script language to describe policy decisions, makes it possible to monitor encrypted traffic, lets you override client actions, and lets you protect your servers with its built in IDS capabilities.
Alt+Connect manages dialup connections, allowing a group of networked machines to share a single Internet connection through their server. Custom client software lets users to start or stop their internet connection, and the server (connectd) ensures that the connection remains up only while someone's using it. Features include support for multiple ISPs and links (modems or ISDN channels), connection control lists, ability to record the time a user spends online and charge him for it, and the ability to enable and disable IP forwarding as a machine starts or stops using the Internet.
The Userspace Logging Daemon (ulogd) is a flexible framework for extensive logging of packets on a firewall machine. ulogd uses the ULOG target of iptables/netfilter, the packet filtering framework of Linux 2.4 and 2.6. It supports binary plugins for adding packet interpreters and output-targets (e.g., for logging into databases, user-defined filetypes, etc.).
Gibraltar is a Debian GNU/Linux-based router/firewall distribution, fully workable from a bootable, live CD-ROM. Log files can be stored on a hard disk, and configuration data is stored on a USB mass storage media or a floppy disk and kept on a RAM disk during run-time. Due to its Debian base, a vast manifold of firewalling, routing, and proxy packages is available. It comes with an intuitive, easy to use Web administration interface and support, and is free to use for home users.
TrinityOS is a step-by-step, example-driven HOWTO on building a very functional Linux box with strong security in mind. TrinityOS is well known for its strong packet firewall ruleset, Chrooted and Split DNS (v9 and v8), secured Sendmail (8.x), Linux PPTP, Serial consoles and Reverse TELNET, DHCPd, SSHd, UPSes, system performance tuning, the automated TrinityOS-Security implementation scripts, and much more.