Manage port forwardings via UPnP

Endian Firewall Community (EFW) is a "turn-key" linux security distribution that makes your system a full featured security appliance with Unified Threat Management (UTM) functionalities. The software has been designed for the best usability: very easy to install, use and manage and still greatly flexible. The feature suite includes stateful packet inspection firewall, application-level proxies for various protocols (HTTP, FTP, POP3, SMTP) with antivirus support, virus and spam-filtering for email traffic (POP and SMTP), content filtering of Web traffic and a "hassle free" VPN solution (based on both OpenVPN and IPsec).

BASE is the Basic Analysis and Security Engine. It is based on the code from the Analysis Console for Intrusion Databases (ACID) project. This application provides a web front-end to query and analyze the alerts coming from a SNORT IDS system.

IOSec Addons are enhancements for web security and crawler detection

IP-Updater is a Perl-Script to manage dynamic IP-adresses (DynDNS). It reads the IP via Telnet from the Router (Zyxel, Netgear) or get it from the web. Different updates to Dyn-IP-Services or FTP-Upload to a hompage are possible. With logging.

JWall is not just a java gui for iptables. JWall is a multi firewall management client. A secure rulebase can be built with graphical objects. Rulesets can be pushed to remote firewalls (via ssh). The remote firewall just needs to be Linux with sshd

GTCop Professional Security Appliance aims to provide a powerful tool for satellite communications, with enhanced QoS and bandwidth controls. As derived from IPCop Firewall, it is a stable, secure, easy to configure and maintain GNU/Linux firewall box.

ISECOM is a non-profit research initiative applying open community cooperation to develop methodologies.

Kwickserver is a do-it-yourself Firewall appliance optimized for educational use, but can be used in all other scenarios. It installs automatically from CD on your HD and is administered via webinterface. Download it from the project homepage!

LogBox is a web based system for real time firewall log analysis. It consists of a daemon for data gathering, a database for log storage and a web interface for user interaction. An extension to general syslog usage is possible in the future.

Internet Control Firewall Intrusion Detection and Logger for Inbound and Outbound Traffic. Watches Files and Directories, Drive and Memory Protection.

Security-Tools Database is an easy to use tool to manage tool-tipps (e.g. from the SecurityFocus.com Newsletters and other sources). Simply copy + paste tipps from the newsletter or enter tipps manually. Finds tools by any combinations of search criteria.

yafig is a LAMP-based firewall rule generator.

none

We are building a more secure way to admin a serverfarm without have root-accounds after installation by using ssh and sudo.

The security proxy is a reverse proxy that hides and serves several webapps. It handles their authentication needs transparently (single sign-on), may be configured to impose HTTPS client connections (on URL basis) and rewrite URLs of content it delivers.

"stealth my bugs" is another type of scalable firewall, additionally type. It could not replace other systems like iptables or equivalent. Written in perl by using minimal requirements, it grants maximum usuability.