An implementation of a NAT-PMP server for linux that builds iptables rules as requested by clients.
Hardened Linux is a secured and minimalized distribution based on Slackware. It is designed to run as firewall, IDS host, authentication system and VPN gateway. PaX and SSP is included.
CartoReso intends to facilitate enterprise computer network mapping.
Lomalarga is a VPN-like service based on SSH and Linux.
Lomalarga is a port forwarding (VPN-like) service based on SSH & Linux. Based entirely on open source. The client is written in C# and the administration is based on Linux/lighttpd/PostgreSQL/PHP, with the UI written with Google Web Toolkit.
A simple SIP and RTP NAT friendly proxy for SIP based VoIP
iptables based port (service) traffic counter with accounting capabilities
Web interface for UFW, the built-in firewall in Ubuntu. UFW it self is built on iptables. With ufw2web, it is possible to enable or disable the firewall and view status.
Tool for analysis, consulting, auditing and optimizing firewalls.
An all-in-one Linux firewall/gateway distribution which features an easy to use yet powerful web based management console. Created to be a unified threat management system to protect and defend a network. Uses Zend Framework heavily
Resheto is a firewall management tool with (not yet)optimizing rule compiler. By now it is iptables/ipset oriented but will support PF in the future(and may be others) It is suitable for big(thousands) object databases with hierarchical(nested) groups an
Gtk-IPTables is a GTK-based frontend for iptables written in C. You can create rules for all chains for Filter, NAT, and Mangle tables.
Nubric (Near-real-time user behaviour and resource interaction control) is a framework for security and authentication-related modules written in Java. Its origin focus lies on network monitoring, dynamic, transparent firewalling and traffic control.
Bunny Proxy is a light web proxy for across filtering.
Statefull Firwalling on Linux Active-Active Clusters: * loadbalancing * synchronization of conntrack table
This project wants to provide useful tools for routing simple small private networks using a dial-up or broadband link. These tools consist of firewall and traffic shaping tools currently. Any feedback is welcome.
Client-Server mechanism to manage Linux-netfilter-box using other firewall platform syntax. Currently implemented interpreter for Cisco PIX.
fwgraph is an attempt to characterize and present network traffic including network devices, QoS, and iptables under Linux.
Really sorry, everyone. This project contains serious vulnerability. Please stop using. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4504 --------------------------------------- UPnP IGD (Internet Gateway Device).This emulates Microsoft ICS service. This is for Kernel 2.2. If you looking for 2.4 version, I gave my all result to "Linux-IGD" project. I am thankful to them who translated my project into mainstream kernel.
This project will serve as a central hosting/bug tracking center for modifications to the SmoothWall.org firewall distribution. Support and information for the "mods" posted here can be found on the SmoothWall.org forums, the SmoothWall.org IRC server, or
A complex software (firewall, network access informant, traffic calculator) for xDSL subscribers of Sibirtelecom company. Only Novosibirsk city branch supported at now.
libpal is an easy-to-use, straightforward packet assembly library that allows programmers to forge any kind of IP, TCP, UDP, ICMP and application layer packages.
An Eclipse Plugin to achieve distributed pair programming on the internet, it is based on open sourced Syncshare server. This plugin will finally make XP possible b/w distributed teams.
yafig is a LAMP-based firewall rule generator.
PHANTUM - Punch-Hole Access for NAT Traversal of UDP in a Module; Built on top of Samy Kamkar's 'chownat' script, PHANTUM allows for pure client-agnostic TCP services to be tunneled over UDP and hosted behind NAT infrastructures.
Remote Packet Filter Control Daemon allows remote control and monitoring of OpenBSD's packet filter. It communicates with clients using RPFC protocol running on top of SSL (Secure Socket Layer).