this firewall is a union of lot of tool distributed free for the OS NetBSD, OpenBSD and FreeBSD, use web services with xml-rpc and soap, and a desktop too based on Gtk
BadTuxWall will help you to implement your own firewall on a Linux operating system using an efficient graphical user interface. It also allows you to generate iptables scripts, export them and share them with friends.
It's a little shell for managing networking processes under FreeBSD.
BastionX is a suite of bash scripts which provide a firewall system using netfilter on linux. Some of the supported features are flow control & QoS, local & WAN ip blacklists, dynamic trusted hosts, DMZ feature, auto detection of interfaces.
A kit of batch files to help you be anonymous while hacking/cracking. Comes with directions and extras.
Disconnect your children from the Internet after bedtime.
Bedtime controls the bedtime of your children by automatically disconnecting their devices from your Internet connection. It does this by replacing your ISP router as the source of IP addresses, which allows it to learn all the devices on your network and control their access. Parents can log into a web interface, link devices to children and set their bedtimes for school nights and weekends. Misbehaving children can be grounded or children's access can be extended as a reward.
This project seeks nothing less than a total change in perimeter defense. This project will provide applications to create millions of virtual hosts (aka honeyhet) tied to an IDS/IPS system(s), permitting dynamic network camouflage and defense.
Bob's Firewall. A web based alternative way to configure IPTABLES.
BrFW is an application firewall, the user will specify what programs are able to open sockets (RAW / IP / UDP / TCP...). BrFW alerts when another program try to access the network.
Bypass is an IP forwarding/tunneling tool which can be used where limited bypassing of a firewall is necessary, but relaxing the restrictions in the actual firewall is not an option. The aim is for bypass to be automatic and transparent.
CD-ROM Firewall is a Red Hat/Centos (yum based install) based firewall that boots off a CD-ROM. Utilizing a headless, diskless computer it can provide services such as network address translation (NAT), virtual private network (VPN), ADSL connnectivity,
A package for encrypted IP over UDP tunneling. Can be used to build any range of VPN solutions. (Linux version)
Provide secure, quality, user-friendly and fail-proof access to internet manager for IPTABLES-DENY-ALL-based Linux configuration of firewall, including traffic and time accounting, logging, auto-disconnection. Software for i-net clubs and caffee admins
CRYPT extension for Netfilter/Iptables allows you to create an encrypted communication using stream and block ciphers. It also authenticates the packets.
The CSpot Authentication System provides a method to manage wireless hot spots. Enjoy it!
Firewall and Security solutions for your Cobalt Servers. Tired of being port scanned? Sick of foreign hackers installing root kits? Come check it out.
CompactBSD is a powerful set of tools that allow you to build your own customized, lightweight distribution of OpenBSD and then burn it onto compact flash so that it can be run on an embedded PC platform such as FatPort's FatPoint (www.fatport.com)
The aimed users of this project are ISP, that uses Linux and Linux-based hosts as routers/servers. Requirements : Perl interpreter, iproute2 and iptables or ipchains. These perl scripts, will configure Linux kernel, routing, packet filter and QoS.
The aim of context filter is to provide a strong mechanism for checking network flow on the fly in complement of Packet Filter or IP Filter on a FreeBSD operating system.
DAXFi is a Python package that helps configure several different kinds of firewalls in a consistent way. The rules are described in XML. It comes with a Python package, useful to build other applications and includes some useful example programs.
ddos_deflate, el Guapo Edition is network trench defense!
Assuming a firewall (whether in hardware or in software via IPTables / IPChains / or another software firewall), then the bulk of your nefarious traffic is (hopefully) already being taken care of. However, what slips through, on legitimate ports, can sometimes be denial of service attacks. A truly distrubuted denial of service attack is something for where there exists no known solution (at least at this time). However, a single user dos (or a small number of users working together) can effectively be thwarted if your pipe (internet connection) is large. Running on a short cycle (such as 1 minute), ddos_delfate ege can detect nefarious IP's that have bombarded a port with a tremendous number of connections (in a soho environment, 100 connections from a single IP that is not in your LAN constitutes a 'big red warning flag', but you can set this connection limit to your liking in the config file).
DGTeam is an unofficial custom firmware developed for Netgear DG834XX Router Series. Main feat: latest ADSL driver,new busybox,firewall,web-intf,ssh-access,adv adsl,wifi schedule,TCP/IP,openNTP serv,NOIP,Wakeonlan. For details: http://dgteam.ilbello.com
The Distributed Intrusion Detection System.
DaemonWall is an OpenBSD-based network security live CD which can act as an Internet firewall/gateway.
DFA library is a regular expression library capable of the classic RE syntax (i.e. - without any perl extension). Unlike many other libraries with similar functionality, a deterministic finite automata (DFA) is used. DFA was formerly called npcre, wh