From: Raphael V. <ra...@en...> - 2007-12-31 15:36:59
|
The Endian Team is glad to announce a new release of the Endian =20 Firewall Community version 2.2 Beta 2. Endian Firewall Community is an all-in-one Linux security distribution =20= that turns every system into a full featured security appliance. Designed with =93usability in mind=94, = Endian =20 developed a software that is extremely flexible and very easy to install, use and manage. The Community =20 version has been warmly embraced by the open source community and has so far enjoyed over 200000 downloads =20 with thousands of deployments worldwide. Changes from 2.2 Beta 1: - Updated kernel to version 2.6.22.15 (features a lot more drivers, =20 better SATA/SCSI/NIC support, and much more) - Updated clamav to version 0.92 - Updated openswan to version 2.4.11 - Updated snort to 2.8.0.1 - 55+ bugfixes and minor feature enhancements, view the full changelog =20= here: http://bugs.endian.it/changelog_page.php Happy new year! :) --- Endian Firewall Community 2.2 Highlights: - Enhanced management of WAN/RED connections * Support for multiple uplinks * Multiple IPs/networks on each WAN/RED interface in STATIC mode * Uplink monitoring with automatic failover (ISP failover) * Uplink editor - Port Forwarding * Multiple uplink support, allowing different rules per uplink * Port Forwarding of traffic coming from VPN endpoints * Option for rule based Logging * GUI enhancements - System Access * External Access has now been enhanced and renamed to System =20 Access * Fine grained management of permissions regarding access to the =20= system from LAN, WAN, DMZ and VPN endpoints * Default policy for firewall/system access is now set to DENY * Firewall services automatically define ports required for their =20= proper function, but access can be restricted * Support for ICMP protocol * GUI enhancements - Outgoing Firewall * Support for ICMP protocol * Handling of multiple sources/ports/protocols per Rule * GUI enhancements - Zone Firewall * DMZ Pinholes has been enhanced and renamed to Zone Firewall * Fine grained filtering of local network traffic * Rules based on zones, physical interfaces, MAC addresses * Support for ICMP protocol * Handling of multiple sources/ports/protocols per rule * GUI enhancements - HTTP Proxy * Time based access control with multiple time intervals * Group based web access policies * Major GUI enhancements - OpenVPN * X.509 and 2 factor based authentication * Pushing of DNS settings to clients * Pushing of global or per client routes * Support for NATed VPN endpoints * Support for VPN over HTTP Proxy * Automatic connection failover * Every VPN endpoint is resolvable through DNS =20 (vpn.<username>.domain) - Logs * Every service supports remote logging * Daily log rotation * GUI enhancements - System * Accelerated and polished boot process * Firewall logs rule number and target * Refactoring of service scripts * Squid 2.6 with major performace improvements * Updated packages for ClamAV, Amavis, Postrey and much more= |