Web reverse proxy for Single Sign On (SSO). It can apply a security policy (profiles stored in a LDAP directory) to an existing set of applications, consolidate websites, encrypt all communications, rewrite simple URLs...
The PCX Firewall is a perl script that generates a customized shell script to start, stop and restart the IPTables based firewall. You can build a MULTI-homed system or a Standalone system. DNAT, SNAT, Redirection, Blocking, etc. are all supported.
The SWAP (Secure Wireless Access Point) project is intended for use in embedded appliances. These appliances will operate in the role of a WEP (wireless encryption protocol) and IPSEC enabled wireless access point, IPSEC VPN gateway, and firewall.
An easy-to-use, self-configuring OpenBSD-based firewall with a web interface.
sddelta shows the differences in the configuration of SmartDefense between two exports from a Check Point NGX SmartCenter. sddelta requires Perl and has only been tested on Linux so far.
Smoothwall GUI Styles selection. Mod to Smoothwall 2.0 provides Web interface color/style selection from the stock orange. Various styles implemented along with the capability to easily add your own styles. Smoothies Style Select has a built in css edito
An all-in-one Linux firewall/gateway distribution which features an easy to use yet powerful web based management console. Created to be a unified threat management system to protect and defend a network. Uses Zend Framework heavily
SquidRestrict is a Web based tool that allows multiple time restrictions to be placed on internet usage for firewalls that use the Squid Web Cache (http://www.squid-cache.org/).
The Plague provides a web UI to a MySQL db of parsed syslog data. The focus has been security reporting. The logs supported (so far) are NetScreen firewalls, Cisco routers and switches and PIXen, Gauntlet firewalls.
Traffic Control is a Linux toolbox to control squid, NAT, and other services traffic limits. TF uses Linux iptables to count traffic. This utility consists of two parts. The first is server side (written in Perl) and the second part is the interface.
Compact FreeBSD distribution for flash card based wireless boxes.
janus watcher - Dynamic DNS watcher for FreeS/WAN & forks. Perl script that watches dynamic DNS hosts and replaces the connection when the IP address changes.
a logging system for openbsd's pf. uses postgresql for storage, and is designed to cope with an unreliable network connection to the database.
This is a firewall and an authenticated gateway script written in perl and bash translating rules to iptables and squid.
readlog is a pair of scripts for reviewing iptables firewall logs via a handy web interface using a MySQL backend.
You can make a simple MSN control (which users can login), web authentication gateway (Horatio based), load balance (iproute2), traffic shape (QoS), simple packet filter and NAT redirects (DNAT), loadbalance and VPN gateway or roadwarrior and ...
The ADSL optimizer is an accurate packet scheduling solution for ADSL connections, based on Linux and HTB. The solution guarantees low latency while maintaining full utilization of both upstream and downstream, without wasting link capacity.
ADSL4Linux is a program to connect your Linux box via ADSL to the internet in as few steps as possible. This is all done in the easiest possible way. Also contains two Firewalls (ipchains and iptables).
Active Intrusion Detection (AIP) Provide a barometer of scanning and hacking activity around the Internet that can be used by administrators to help keep their own network(s) safe. Provides automated ACL creation for a variety of platforms.
Alfandega is a strong and Modular IpTables Firewall. It provides NAT, port-forwarding, spoofing list, blacklist of crackers and spywares sites, protection for tcp/udp scans, DOS/DDOS and Smurf attacks, TCP tuning, DHCP and PPP support and much more.
Authdefender is a filtering application that, in combination with iptables, blocks malicious users from accessing any aspect of the server in question. Malicious users are defined by brute force ssh/ftp attempts and blocked regardless of tcp wrappers.
ARS (Automagic Registration System) was a mature computer registration suite, that allowed network/system admins to setup appliances to control access to the network based on arbitrary registration criteria (such as centralized identity).
BBStatus is an IP accounting and an SNMP and IP monitoring tool for Linux. It collects, summarizes, and displays the values from its database.
this firewall is a union of lot of tool distributed free for the OS NetBSD, OpenBSD and FreeBSD, use web services with xml-rpc and soap, and a desktop too based on Gtk
BMHT is a method of target tracking that allows decisions to be adjusted and refined until enough data has been collected to ensure a level of confidence.