An iptables based firewall for systems running the Linux 2.4 or later kernel. Very flexible configuration allows the firewall to be used in a wide variety of firewall/gateway/router and VPN environments.
HardWall Firewall for Linux 2.4/2.6
HardWall Firewall: Is an iptables script that does the following:- Port Forwarding, Packet Filtering, Statefull Packet Inspection, Port Redirection, Masqurade, SNAT, DNAT, NAT & Bridging - Functions as both a Workstation and IP Forwarding Firewall
An iptables IPv4 firewall and traffic shaping program
A Linux IPv4 iptables firewall and traffic shaper. It allows flexible rule creation, while also shipping with presets for common needs. Rules are written in simple XML, allowing various ways to group and nest the arguments. An interactive mode is available in order to build configuration files in a wizard based manner. Extensive documentation is also included.
Small but complete enviroment for building custom embedded system (x86 and other). Based on the gentoo system and uclibc-embedded project. Ideal for small hardware like WRAP or Soekris.
The WRT54GL Tarifa enhanced firmware. Linksys WRT54G/WRT54GS models V1 to V4 and the WRT54GL V1.x This Third Party Firmware is functionaly the same as the original, the improvements are to make this router more scaleable, by increasing the capacity.
You can make a simple MSN control (which users can login), web authentication gateway (Horatio based), load balance (iproute2), traffic shape (QoS), simple packet filter and NAT redirects (DNAT), loadbalance and VPN gateway or roadwarrior and ...
Smoothwall is a best-of-breed Internet firewall/router, designed to run on commodity hardware and to provide an easy-to-use administration interface to those using it. Built using open source and Free software, it's distributed under the GNU Public License.
Programmable completion code (bash) for iptables (netfilter.org)
This is the programmable completion specification (compspec) for the iptables program (netfilter.org).
ipset set listing wrapper script
ipset_list is a wrapper script for listing sets of the netfilter ipset program. It allows you to match and display sets, headers, and elements in various ways. The result can be saved as shell script and in ipset save, or xml format.
Please see http://firehol.org/ for up-to-date releases and information. FireHOL is a stateful iptables packet filtering firewall configurator. It is abstracted, extensible, easy and powerful. It can handle any kind of firewall, but most importantly, it gives you the means to configure it, the same way you think of it.
Anti Spam SMTP Gateway
[antispam] MailCleaner is an anti-spam / anti-virus filter SMTP gateway with user and admin web interfaces, quarantine, multi-domains, multi-templates, multi-languages. Using Bayes, RBLs, Spamassassin, MailScanner, ClamAV. Based on Debian. Enterprise ready. MailCleaner is an anti spam gateway installed between your mail infrastructure and the Internet. It includes a complete GNU/Linux OS and a graphical web interface for user and administrative access. It comes in the form of virtual machine templates.. - fully compatible with any SMTP mail server (Exchange, Zimbra,...) You can install now MailCleaner within the following virtual environments: qcow2 (KVM, Proxmox, OpenStack, Xen) vhd (Hyper-V, VirtualPC) vmdk (VMware ESXi, Workstation, VMware Fusion) ova (VM Standard, supported by most hypervisor) Dedicate a server to MailCleaner, and you will have a working professional mail filter in less than an hour.
A powerful network security tool, easy, safe and totally free.
BrazilFW is a mini Linux distribution designed to be used as a Firewall and Router that runs easily on older computers. An old PC running BrazilFW is much more powerful and efficient than commercial software for routing in offices and residences running on a "powerful" computer. BrazilFW is based on Coyote Linux, which was designed by Joshua Jackson who discontinued Coyote Linux in version 2.24 in August 2005. In that same month comes on the scene BrazilFW Firewall and Router (BFW) with version 2.24, which is led by "Claudio" and "Marcelo - Brazil", running only on floppy disks, and being 2.30.1 the last version with this support . The following versions, as well having automatic detection of network cards, only run on large capacity media, such as hard disk (HD). Versions in Development: * 2.33.x: Uses kernel 2.4.x and is developed by Marcinho Samurai. * 3.x: Uses kernel 4.x and is developed by WoshMan
Block or allow connections by country address blocks
Ipblock allows you to select which countries you allow or block connections to and from.
Open source voucher management / hotspot system
OpenVoucher is an open source voucher management / hotspot system for authenticating guests in your wifi or cable network. It is designed to be easy to use for anyone who wants to issue vouchers. For further information and installation how to's, see the project's homepage. The source code is maintained on Github.
High interaction honeypot solution for Linux based systems
NOTICE: The format of this project has been changed from ISO to using ansible and has been moved to GitHub. Github link: https://github.com/Bifrozt/bifrozt-ansible
Programmable completion code (bash) for ipset (netfilter.org)
This is the bash shell programmable completion code for the ipset program (netfilter.org).
CD-ROM Firewall is a Red Hat/Centos (yum based install) based firewall that boots off a CD-ROM. Utilizing a headless, diskless computer it can provide services such as network address translation (NAT), virtual private network (VPN), ADSL connnectivity,
Ferramenta Web para Administração de Firewall
Ferramenta web para administração de regras de firewall para pequenas redes que inclui scripts de inicialização de redes, configurações de integração com Squid e um Balanceador de Cargas Simples. Baseado no projeto squidadmin.
Drakonwall is a simple but very powerful firewall for Debian GNU/Linux servers.
Smoothwall Mod for Dansguardian User group editing. Creates five initial groups; everybody, child, preteen, teen and adult. Intended to automated the editing of filtergroupslist and exceptionuserlist via the web interface of Smoothwall. Inserts as a new
Mshaper is a set of example scripts for implementing mass shaping on Linux machine behind NAT. Requirements are simple: Recent Linux kernel with IFB and QoS, HTB support plus iproute2. All users can have different rates or can be blocked.
The Lightweight Linux Project aims to create an exteremly small linux distribution. We aim to expand the project to allow the LLP to be used as a firewall, router, vpn concentrator thin client, or other device which could boot off of a floppy disk or ROM
Traffic shaper for vpn, poptop, etc., using iproute2
FWIPSEC is a set of scripts and code that control iptables/netfilter, FreeS/WAN, squid, and squidguard (a few other services are being considered) on a Linux platform. It is designed to be used as a firewall first with VPN & proxy services added second.
dynipsec solves the problem with dynamic ip addresses on both ends of an ipsec tunnel using FreeSWAN under Linux. It distributes the dynamic ips (and PTP addresses) to each peer of the ipsec tunnels via ssh and rebuilds the ipsec.conf and ipsec.secrets ev