Andrisoft WANGUARD is an enterprise-grade traffic monitoring and DDoS detection and protection solution that delivers the functionality NOC, IT, and security teams need to effectively monitor and protect their network through a single, integrated package. WANGUARD Sensor relies on sFlow, NetFlow, IPFIX, or Port Mirroring / SPAN.
ipt-netflow is high performance NetFlow exporting module for Linux kernel (up to 3.x). It is designed for Linux router with heavy network load. This is netfilter/iptables module adding support for NETFLOW target. It is designed to work without conntrack. It supports NetFlow protocols versions 5, 9, and IPFIX. It has accounting for IPv4, IPv6 traffic, and (NEL) NAT translation events.
firewall_e is a small Web application which allows administrators to create lists of servers, users, and ports and assign them to each other. This allows an administrator to login, create users, and assign ports on servers for them to access. Users can login and their remote IP address will be stored. From this address, they'll then be able to access whatever services the administrator provided them.
FastFwD is a small daemon that allows users to set up port forwarding from a source IP address and port number to a target IP address and port number easily without the need to deal with complicated ipchains/iptables-rules. FastFwD offers a fault-proof possibility for port forwarding between two networks or IP addresses and additionally gives the possibility to password-protect this connection. FastFwD has been tested for Linux and QNX and should compile and work with all POSIX-based systems.
A fail2ban lite. IPQ BDB is a netfilter userspace daemon that can block or mark IP packets according to iptables rules that issue the corresponding -j NFQUEUE, as well as a Berkeley database of bad IPv4 addresses. A log parser and a banning utility add entries to the database. An IP has to be caught a configurable number of times before being blocked. Transitions between blocked and non-blocked are faded using probabilities. A halving period governs IP rehabilitation.
Kattive is a captive portal with an interesting interface, written in Perl and completely Web-based. It interacts with iptables or whatever you want. It's template-based. It works as a transparent rule activator and as an Internet Point interface. It has many features like schools/classes administration. If used in a hotel, you can count the time for billing.