9 projects tagged "Netfilter"

Pop	58.99
Vit	4.05

Fina is a simple, robust bash script that loads iptables rules from a rules directory. As such, it isn't concerned with creating rules for you; it just helps you load them in a robust way, going back to older or safe rules when things go wrong.

Pop	39.70
Vit	1.42

Covert_qos uses the Quality of service fields in IPv4 and IPv6 to set up a unidirectional covert channel. In IPv4, this is a single byte per packet; in IPv6 it is a maximum of 3 bytes per packet. Files can be sent over the channel. It uses Linux netfilter queues as a basis.

Pop	23.62
Vit	1.01

drcom-client is an ISP client for Dr.COM networks, a specialized broadband access and authentication system produced by Doctorcom Corp, which has been used in many universities in China. Compared to the official Windows client, it avoids problems with the prevention of NAT and proxy servers.

Pop	62.21
Vit	2.56

flex-fw is a small and fast front-end for the Linux iptables utility with an easy command syntax like ipfw or pf from BSD systems. It features service-oriented configuration, support for network profiles, which is useful for notebooks, support for macros, easy migration to another network environment by redefining macros, easy distribution to many hosts, syslog logging support for iptables errors and dropped packets, an interactive mode for manually configuring "on the fly", a batch mode for execution from shell scripts, and a library mode for using the flex-fw functions in your shell scripts.

Pop	84.30
Vit	8.37

Firewall/SOSDG is a Netfilter/IPTables firewall that is designed to be simple to use, yet powerful. It features support for standalone machines and routers (with NAT support).

Pop	30.69
Vit	1.42

'blaze' is a Netfilter iptables firewall script that is meant to be ridiculously easy to use, pretty basic, but powerful enough to handle a box with multiple NICs to support gateway usage, possibly with NAT. Setup should take no more than five minutes. Logging is not currently supported.

Pop	33.45
Vit	1.15

A fail2ban lite. IPQ BDB is a netfilter userspace daemon that can block or mark IP packets according to iptables rules that issue the corresponding -j NFQUEUE, as well as a Berkeley database of bad IPv4 addresses. A log parser and a banning utility add entries to the database. An IP has to be caught a configurable number of times before being blocked. Transitions between blocked and non-blocked are faded using probabilities. A halving period governs IP rehabilitation.

Pop	26.83
Vit	28.68

LILA is a command line tool that allows you to monitor netfilter logs stored in a MySQL database in real time. It converts the text messages created by netfilter into nice colored output. Two features that should be highlighted are that it resolves IP addresses to hostnames with two different techniques and detects duplicate packets (with the same destination IP and chain) that have been sent in a freely configurable time interval. This allow the user to avoid getting flooded with hundreds of identical packets that don't offer any additional information. It uses a separate configuration file, which allows you to modify various aspects on how it works and how logs are being displayed. It has a lot of other features.

Pop	46.97
Vit	8.71

iptables-bash_completion provides programmable completion for the iptables and ip6tables programs. iptables options are shown only if they are valid at the current context. It supports completion of options, matches, and targets, and dynamic retrieval of data from the system, including chains, set names, interfaces, and hostnames. Environment variables allow completion options to be tuned. IP and MAC addresses can be supplied using a file.