Showing 134 open source projects for "rules"

View related business solutions
  • Ship Agents Faster Icon
    Ship Agents Faster

    Transform your applications and workflows into powerful agentic systems at global scale.

    Gemini Enterprise Agent Platform lets you rapidly build, scale, govern and optimize production-ready agents grounded in your organization's data. The platform enables developers to build custom or pre-built agents for virtually any use case. New customers get $300 in free credits.
    Get Started Free
  • Our Free Plans just got better! | Auth0 Icon
    Our Free Plans just got better! | Auth0

    With up to 25k MAUs and unlimited Okta connections, our Free Plan lets you focus on what you do best—building great apps.

    You asked, we delivered! Auth0 is excited to expand our Free and Paid plans to include more options so you can focus on building, deploying, and scaling applications without having to worry about your security. Auth0 now, thank yourself later.
    Try free now
  • 1
    OpenSnitch

    OpenSnitch

    OpenSnitch is a GNU/Linux port of the Little Snitch firewall

    ...Double click on a row to view the details of a process, rule, host or user. Once you know which are the common processes, IPs and hosts that your machine is connecting to, you can start creating permanent rules (Duration: always) to deny or allow them. You can also convert temporary rules to permanent by right-clicking on a temporary rule or by double-clicking on it, and then edit it. By default OpenSnitch UI listens on a local Unix socket in /tmp/osui.sock.
    Downloads: 8 This Week
    Last Update:
    See Project
  • 2
    Nipe

    Nipe

    An engine to make Tor network your default gateway

    Nipe is a Perl-based engine whose primary aim is to make the Tor network act as the default gateway for outgoing traffic. In practice, it configures system firewall rules (iptables) and network routing so that almost all IPv4 traffic is redirected through Tor. The tool provides commands such as install, start, stop, restart, and status to manage its behavior. When “start” is issued, it sets up the necessary rules; when “stop” is used, it attempts to remove those rules. Nipe currently operates over IPv4 and does not yet support IPv6, meaning that users with IPv6 connectivity may bypass Tor routing. ...
    Downloads: 2 This Week
    Last Update:
    See Project
  • 3
    Netmaker

    Netmaker

    Netmaker makes networks with WireGuard

    ...It blows past any NAT’s, firewalls, or subnets that stand between them. Devices are scattered across data centers, offices, clouds, clusters, and more. Distinct networks separate them, each with different management rules. Connecting machines across environments means setting up gateways, firewalls, and tunnels, often manually.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 4
    FireHOL

    FireHOL

    A firewall for humans.

    ...FireQOS is a program that sets up traffic shaping from an easy-to-understand and flexible configuration file. Both programs abstract away the differences between IPv4 and IPv6. so you can concentrate on the rules you want. You can apply rules for IPv4 or IPv6, or both, as you need.
    Downloads: 0 This Week
    Last Update:
    See Project
  • $300 Free Credits to Build on Google Cloud Icon
    $300 Free Credits to Build on Google Cloud

    New to Google Cloud? Get $300 in credits to explore Compute Engine, BigQuery, Cloud Run, Gemini Enterprise Agent Platform, and more.

    Start your next project with $300 in free Google Cloud credit. Spin up VMs, run containers, query petabytes in BigQuery, or build agents with Gemini Enterprise Agent Platform. Once your credits are used, keep building with 20+ always-free tier products including Compute Engine, Cloud Storage, GKE, and Cloud Run functions. No commitment required—just sign up and start building.
    Claim $300 Free
  • 5
    Antrea

    Antrea

    Kubernetes networking based on Open vSwitch

    Antrea is a Kubernetes-native project that implements the Container Network Interface (CNI) and Kubernetes NetworkPolicy thereby providing network connectivity and security for pod workloads. Antrea extends the benefit of programmable networks from Open vSwitch (OVS) to Kubernetes. Antrea simplifies Kubernetes networking across differing clouds and operating systems with a unified network stack built atop Open vSwitch. Antrea is designed to ease deployment, operations and troubleshooting by...
    Downloads: 0 This Week
    Last Update:
    See Project
  • 6
    NGINX Ingress Controller

    NGINX Ingress Controller

    NGINX Ingress Controller for Kubernetes

    ingress-nginx is an Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer. It is built around the Kubernetes Ingress resource, using a ConfigMap to store the NGINX configuration. The goal of this Ingress controller is the assembly of a configuration file (nginx.conf). The main implication of this requirement is the need to reload NGINX after any change in the configuration file. Though it is important to note that we don't reload Nginx on changes that impact only...
    Downloads: 2 This Week
    Last Update:
    See Project
  • 7
    glider

    glider

    glider is a forward proxy with multiple protocols support

    ...Load balancing with the following scheduling algorithm, rr: round robin, ha: high availability, lha: latency based high availability, dh: destination hashing. Rule & priority based forwarder choosing: Config Examples. DNS forwarding server. Force upstream querying by TCP. Association rules between dns and forwarder choosing. Association rules between dns and ipset. dns cache support. Custom dns record. IPSet management (linux kernel version >= 2.6.32). Add ip/cidrs from rule files on startup. Add resolved ips for domains from rule files by dns forwarding server. Serve HTTP and socks5 on the same port. Periodical availability checking for the forwarder.
    Downloads: 2 This Week
    Last Update:
    See Project
  • 8
    NetBird

    NetBird

    Connect your devices into a secure WireGuard-based overlay network

    NetBird is an open-source solution that builds a WireGuard®-based overlay network enabling seamless, encrypted peer-to-peer connectivity without the complexity of firewall rules, port forwarding, or centralized VPN gateways. It integrates access control features such as SSO and MFA for secure, policy-driven networking. Every machine in the network runs NetBird Agent (or Client) that manages WireGuard. Every agent connects to Management Service that holds network state, manages peer IPs, and distributes network updates to agents (peers). ...
    Downloads: 30 This Week
    Last Update:
    See Project
  • 9
    Nezha Monitoring

    Nezha Monitoring

    Self-hosted, lightweight server and website monitoring and O&M tool

    Nezha is a self-hosted monitoring and alerting tool for servers, providing real-time tracking and notifications on server health and performance.
    Downloads: 1 This Week
    Last Update:
    See Project
  • MongoDB Atlas runs apps anywhere Icon
    MongoDB Atlas runs apps anywhere

    Deploy in 115+ regions with the modern database for every enterprise.

    MongoDB Atlas gives you the freedom to build and run modern applications anywhere—across AWS, Azure, and Google Cloud. With global availability in over 115 regions, Atlas lets you deploy close to your users, meet compliance needs, and scale with confidence across any geography.
    Start Free
  • 10
    Grafana Alloy

    Grafana Alloy

    OpenTelemetry Collector distribution with programmable pipelines

    Grafana Alloy is an open source OpenTelemetry Collector distribution with built-in Prometheus pipelines and support for metrics, logs, traces, and profiles. Grafana Alloy is Grafana Labs’ distribution of the OpenTelemetry Collector. It is an OTLP-compatible collector with built-in Prometheus optimizations that also support signals across metrics, logs, traces, and profiles. Alloy was started at Grafana Labs and announced at GrafanaCON in 2024. The mission of the project is to create the best...
    Downloads: 6 This Week
    Last Update:
    See Project
  • 11
    Apache HertzBeat

    Apache HertzBeat

    Apache HertzBeat(incubating) is a real-time monitoring system

    Apache HertzBeat (incubating) is an easy-to-use, open source, real-time monitoring system with an agentless, high-performance cluster, Prometheus-compatible, and offers powerful custom monitoring and status page building capabilities. Hertzbeat is an open-source monitoring and alerting platform for IT infrastructure, including servers, networks, and applications.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 12
    Apple WLOC

    Apple WLOC

    Modify Apple network location (gs-loc) to return coordinates

    ...The picker can parse location links from Apple Maps, Google Maps, Amap, Baidu Maps, and coordinate text. Overall, it is a specialized iOS networking and location-testing utility for users who understand proxy rules, MITM certificates, and the limits of network-based positioning.
    Downloads: 1 This Week
    Last Update:
    See Project
  • 13
    BFE

    BFE

    A modern layer 7 load balancer from baidu

    ...BFE supports HTTP, HTTPS, SPDY, HTTP2, gRPC, WebSocket, TLS, FastCGI, etc. Future support is planned for HTTP/3. BFE provides an advanced domain-specific language to describe routing rules which are easy to understand and maintain. BFE supports global load balancing and distributed load balancing for zone aware balancing, zone level failure resilience, overload protection etc. BFE provides a rich set of plugins for traffic management, security, observability, etc. BFE includes detailed built-in metrics for all subsystems. ...
    Downloads: 2 This Week
    Last Update:
    See Project
  • 14
    Cloud Scanner of Death
    Cloud Scanner of Death is a professional-grade cloud security assessment tool designed to identify vulnerabilities, misconfigurations, and compliance issues across AWS, Azure, and Google Cloud Platform (GCP) environments. The tool provides comprehensive security scanning with detailed reporting and remediation guidance.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 15
    VPN Connection Sharing

    VPN Connection Sharing

    Share a VPN connection with VMs or containers

    Easily share a VPN connection with your virtual machines or containers with this script. Works with IPsec VPN connections (like strongSwan), and lets your VMs reuse the VPN connection of your host system. Create a desktop launcher to start the VPN connection sharing script whenever you need it.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 16
    dfirewall
    Full set of scripts to implemente a full featured firewall.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 17

    IP64Bridge

    A TCP/UDP packet forwarding tool for IPv6 and IPv4

    Use this program to enable IPv6 remote multiplay for games that support only IPv4 or local LAN connections. It is also possible to customize the port forwarding/mapping rules.
    Downloads: 2 This Week
    Last Update:
    See Project
  • 18
    FancySS

    FancySS

    fancyss is a project for bypassing the Great Firewall (GFW)

    ...V2Ray) to circumvent firewall or censorship (“GFW” in the Chinese context). Because it integrates into the router’s firmware environment, fancyss automates configuration, routing, and firewall rules to minimize manual tinkering. It supports multiple architectures and firmware versions, though some submodules or variants (e.g. “fancyss_hnd”) are optimized for specific chipsets. The project also maintains offline packages for constrained environments and hardware support lists. Many users adopt fancyss to turn relatively cheap consumer routers into censorship-resilient gateways, avoiding separate proxy appliances.
    Downloads: 1 This Week
    Last Update:
    See Project
  • 19

    IP-Array

    An iptables IPv4 firewall and traffic shaping program

    A Linux IPv4 iptables firewall and traffic shaper. It allows flexible rule creation, while also shipping with presets for common needs. Rules are written in simple XML, allowing various ways to group and nest the arguments. An interactive mode is available in order to build configuration files in a wizard based manner. Extensive documentation is also included.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 20
    OWASP ModSecurity CRS

    OWASP ModSecurity CRS

    OWASP ModSecurity Core Rule Set (CRS) Project

    ...It focuses on broad protection—SQL injection, cross-site scripting, local/remote file inclusion, command injection, and protocol violations—without requiring app-specific knowledge. Rules are organized into paranoia levels so operators can tune detection aggressiveness and balance false positives against coverage. An anomaly-scoring model accumulates rule hits per request, enabling nuanced blocking thresholds and easier incident triage. The project ships with extensive documentation, exclusion packages, and testing tools to help tailor deployment for frameworks, CDNs, and APIs. ...
    Downloads: 1 This Week
    Last Update:
    See Project
  • 21
    HttpRouter

    HttpRouter

    A high performance HTTP request router that scales well

    ...A compressing dynamic trie (radix tree) structure is used for efficient matching. With other routers, like http.ServeMux, a requested URL path could match multiple patterns. Therefore they have some awkward pattern priority rules, like longest match or first registered, first matched. By design of this router, a request can only match exactly one or no route. As a result, there are also no unintended matches, which makes it great for SEO and improves the user experience.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 22
    Falcon+

    Falcon+

    An open-source and enterprise-level monitoring system

    ...Users can collect their customized metrics by writing plugins or just simply run a script/program to relay metrics to falcon-agent. For easier management of alerting rules, Open-Falcon supports strategy templating, inheritance, and multiple alerting method, and callback for recovery. Open-Falcon could present multi-dimension graph, including user-defined dashboard/screen.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 23
    NetFlow/IPFIX iptables module

    NetFlow/IPFIX iptables module

    NetFlow iptables module for Linux kernel

    ...Designed to work efficiently w/o conntrack. Supporting NetFlow protocols v5, v9, and IPFIX. Accounting for IPv4, IPv6 traffic, and NAT translation events (NEL). Additional options is SNMP-index translation rules, aggregation rules, Ethernet type, MPLS, VLAN, and MAC addresses exporting.
    Downloads: 7 This Week
    Last Update:
    See Project
  • 24
    Please see http://firehol.org/ for up-to-date releases and information. FireHOL is a stateful iptables packet filtering firewall configurator. It is abstracted, extensible, easy and powerful. It can handle any kind of firewall, but most importantly, it gives you the means to configure it, the same way you think of it.
    Downloads: 1 This Week
    Last Update:
    See Project
  • 25
    Scrollout F1

    Scrollout F1

    An easy-to-use anti-spam email gateway

    ... • Built-in multilayer security levels make configuration effort equal to a car radio. • It combines simplicity with effective protection using powerful open source with additional set of rules & filters. • Available as 64bit: - ISO image (Internet connection required during installation) - install from scratch (Internet connection required during installation). • Minimum Requirements (for 5,000 messages/day): 1 GB of RAM 30 GB storage drive 1 Processor x86/AMD64 1 Ethernet x 1 IPv4 address UDP ports: 53 123 4500 6277 24441 TCP ports: 25 80 443 2703
    Leader badge
    Downloads: 95,404 This Week
    Last Update:
    See Project
Auth0 Logo