Linux firewall distribution geared towards home and SOHO users.
The IPCop Firewall is a Linux firewall distribution. It is geared towards home and SOHO users. The IPCop web-interface is very user-friendly and makes usage easy.
BASE is the Basic Analysis and Security Engine. It is based on the code from the Analysis Console for Intrusion Databases (ACID) project. This application provides a web front-end to query and analyze the alerts coming from a SNORT IDS system.
Anti Spam SMTP Gateway
[antispam] MailCleaner is an anti-spam / anti-virus filter SMTP gateway with user and admin web interfaces, quarantine, multi-domains, multi-templates, multi-languages. Using Bayes, RBLs, Spamassassin, MailScanner, ClamAV. Based on Debian. Enterprise ready. MailCleaner is an anti spam gateway installed between your mail infrastructure and the Internet. It includes a complete GNU/Linux OS and a graphical web interface for user and administrative access. It comes in the form of virtual machine templates.. - fully compatible with any SMTP mail server (Exchange, Zimbra,...) You can install now MailCleaner within the following virtual environments: qcow2 (KVM, Proxmox, OpenStack, Xen) vhd (Hyper-V, VirtualPC) vmdk (VMware ESXi, Workstation, VMware Fusion) ova (VM Standard, supported by most hypervisor) Dedicate a server to MailCleaner, and you will have a working professional mail filter in less than an hour.
A firewall configuration project based on Linux 2.6.x and iptables. It has a web interface with an intuitive Webmin module, or you can edit a XML file. You can define the different firewall elements (zones, hosts, networks) and then set the services
CartoReso intends to facilitate enterprise computer network mapping.
Un Fail2Ban pour windows
ATTENTION VERSION :proof of concept Outils qui examine les logs systeme de windows pour créer dynamiquement des règles de blocages (temporaire ou permanent) dans le firewall windows lors de tentatives raté de connexions (MSSQL pour le moment mais SSH et autre après).
GTCop Professional Security Appliance aims to provide a powerful tool for satellite communications, with enhanced QoS and bandwidth controls. As derived from IPCop Firewall, it is a stable, secure, easy to configure and maintain GNU/Linux firewall box.
What are the packets rejected by your Netfilter based firewall today ? How often this suspicious host try to connect to your box ? What are the most rejected domains ? Who is this strange host which scan your ports ? The responses are in the iptables log
PySocks - a platform independent SOCKS proxy written in Python Do you share an DSL or cable connection between several computers? With PySocks you'll be able to use all features of ICQ, MIRC, Napster and such again!
3ff aims to provide a full features gateway for home or small office use. This distro is totaly modular and try to be secure as possible.
Aloa provide log monitoring for DMZ servers. It installs agents to centralize log information from DMZ servers. Connections are established from LAN to DMZ via TCP tunelling. Aloha provides log analysis, using rules and semi-automated learning procedure.
BadTuxWall will help you to implement your own firewall on a Linux operating system using an efficient graphical user interface. It also allows you to generate iptables scripts, export them and share them with friends.
The aim of context filter is to provide a strong mechanism for checking network flow on the fly in complement of Packet Filter or IP Filter on a FreeBSD operating system.
HLBR is an IPS (Intrusion Prevention System) that can filter packets in the OSI layer 2. Detection of malicious traffic is done by rules. It can even be used as bridge to honeypots. The HLBR is a firewall element and can use regular expressions. Warning: this project was discontinued and should not be used in production networks. There are several bugs.
ISECOM is a non-profit research initiative applying open community cooperation to develop methodologies.
Java Port Mapping between 2 hosts. Put up a server on your local network and share it with the outside network in a secure way. A \"server proxy\" network tool. Share one IP with multiple servers.
[not maintained anymore] Jay's Iptables Firewall is a script with support for multiple (external/internal) interfaces, TCP/UDP/ICMP control, masquerading, synflood control, spoofing control, port forwarding, VPNs (vtund), ToS, denying hosts, ZorbIPTraff
Kharon Firewall is a shell script based on Iptables and written for Linux 2.4.x and 2.6.x. It can be used for a personnal or a professionnal usage and fully commented on in french.
The Master-Slave project is directly related to the Snort IDS to dynamically create rules into iptables firewall. It could send the attacker IP address to others machines into the circuit that will block the IP address before any attack from the intruder
A firewall is used to control access to services (eg proxy) depending on the time of day, the day and the hosts the requests come from -- as the need may arise in a school or university. A web interface delegates control of activation to authorized users.
Internet Control Firewall Intrusion Detection and Logger for Inbound and Outbound Traffic. Watches Files and Directories, Drive and Memory Protection.
Open Firewall is a way to agregate some good technologies to make a complete, robust and fast application level firewall. It will provide an open framework for developpers who wish to implement protocol filters.
Web reverse proxy for Single Sign On (SSO). It can apply a security policy (profiles stored in a LDAP directory) to an existing set of applications, consolidate websites, encrypt all communications, rewrite simple URLs...
OpenUTM is an open source Unified Threat Management software framework to be used to combine together other open source projects to build an easily managed UTM firewall appliance.
GNU Firewalling tools. Formerly known on Freshmeat as ipchains-firewall.