Nodogsplash offers a simple way to provide restricted access to an internet connection. It is intended for use on wireless access points running OpenWRT (but may also work on other Linux-based devices).
sshh allows you to make a persistent tcp connection (tunnel) over an http proxy. Once you have it set up, you can make new connections from either end. Similar in concept to httptunnel but more versatile and scalable.
Lomalarga is a VPN-like service based on SSH and Linux.
Lomalarga is a port forwarding (VPN-like) service based on SSH & Linux. Based entirely on open source. The client is written in C# and the administration is based on Linux/lighttpd/PostgreSQL/PHP, with the UI written with Google Web Toolkit.
m0n0wall is a powerfull Router Application Platform.
IDS + IPS for RouterOS (mikrotik)
This project reads logs from your mikrotik firewall and creates an address list with detected attackers
Drop specified IP n seconds remotely, auto-undrop it when timeout.
It's a IDS-receiver and written in C. Sometimes I want to drop remote IP xx seconds, and Undrop it when timeout; Sometimes my sniffer-server find a hack-action and I want to tell another server/server-group "Drop xxx.xxx.xxx.xxx IP xx seconds". So I written this program -- dynipdrop("dynipdrop" daemon and "ipdrop_local" to send a drop-msg from localhost, and "ipdrop_udp" to send a drop-msg to another server(installed the dynipdrop daemon). And I think: "Maybe I can make a client to drop the ssh-scan, like DenyHost(http://denyhost.sf.net)", so I write the "sshdprotector". dynipdrop run on linux and need iptables, I use "portsentry(http://sourceforge.net/projects/sentrytools/" + "sshdprotect" + "dynipdrop" to protect my servers, and hope this software make some help to you.
nf-HiPAC is a high performance packet filter for Linux. It provides the same rich feature set as iptables but uses an advanced algorithm to minimize the number of memory lookups per packet.
KMyFirewall is a KDE/Qt Programm that tries to provide an easy to use and comfortable GUI for the Linux "iptables" command. An easy to use plugin architecture allows fast and easy development of rule option extentions.
The Firepoint Firewall Management Server provides the missing link between iptables and Firewall Builder to make a complete firewall system.
redWall is a bootable CD-ROM Firewall with Snort, snortsam, dansguardian and support for fwbuilder, spamassassin, reporting (using ACID/sarg/ntop/webfwlog), VPN (FreeSWan/PoPToP/Openvpn) and mail alerting (by mail). Configs are stored on a Floppy or USB
The goal of the project is to build a framework to allow Astaro firewall users to install optional software packages on their firewalls. (Astaro is a Linux-based firewall available from www.astaro.com.) Such a framework includes a package-management syst
An Eclipse Plugin to achieve distributed pair programming on the internet, it is based on open sourced Syncshare server. This plugin will finally make XP possible b/w distributed teams.
[not maintained anymore] Jay's Iptables Firewall is a script with support for multiple (external/internal) interfaces, TCP/UDP/ICMP control, masquerading, synflood control, spoofing control, port forwarding, VPNs (vtund), ToS, denying hosts, ZorbIPTraff
PacketFlow is a command line utility that processes an XML configuration to generate a set of firewall rules. It is intended to be installed and run directly on the firewall itself. PacketFlow was designed to deal with complex configurations.
SMBGate provides a gateway / firewall with authentication managed by a Samba Primary Domain Controller and the firewall rules set on a user basis.
HardWall Firewall: Is an iptables script that does the following:- Port Forwarding, Packet Filtering, Statefull Packet Inspection, Port Redirection, Masqurade, SNAT, DNAT, NAT & Bridging - Functions as both a Workstation and IP Forwarding Firewall
IPv4 & IPv6 Firewall Manager with traffic shaping and Ncurses GUI
Vuurmuur is a powerful firewall manager for Linux/iptables. Vuurmuur supports traffic shaping and live monitoring. It has an easy to learn configuration that allows both simple and complex configurations, and can be fully configured through the Ncurses GUI. Vuurmuur supports NAT, Port Forwarding and has experimental IPv6 support.
This project will serve as a central hosting/bug tracking center for modifications to the SmoothWall.org firewall distribution. Support and information for the "mods" posted here can be found on the SmoothWall.org forums, the SmoothWall.org IRC server, or
Coyote Linux is a security centric distribution of Linux designed to provide firewall, VPN service, IP routing, and various other functions.
Creates true post-admission network access control by regulating network access to admitted users on an as needed basis. Users cannot escalate privileges between micro-perimeters. Manageable, efficient and scalable for complex security environments.
CallingHome is a small tool that allows you to gain control over a firewalled and thus directly unreachable PC (e.g. your PC at work). It achieves this by actively maintaining a SSH connection from within the firewall to a SSH server of your choice.
Simple TDI-Based Open Source Personal Firewall for Windows NT4/2000/XP/2003
Kharon Firewall is a shell script based on Iptables and written for Linux 2.4.x and 2.6.x. It can be used for a personnal or a professionnal usage and fully commented on in french.
Human Configurator for iptables and tc [traffic control], in order to obtain a traffic-shaping system with a few of click. Basically, it's a perl script which parse an xml config file, where you can put your shaping and filtering rules for your net(s)/h
Collection of open source security tools that enhance the ability of people and companies to secure their environment. These tools will build upon the foundation laid by the security community.