Re: [Fwbuilder-discussion] Alternative / Going Forward [Was: Firewalld]
Brought to you by:
mikehorn
From: <ni...@no...> - 2015-07-15 22:17:40
|
Onsdag 15. juli 2015 16.30.15 skrev Adam Tauno Williams: > Given the FWBuilder - a truly amazing application - is dead in the > water... Yes, the original authors did an excellent job on FWBuilder! Not quite dead, as the users and the source is out there :-) > what alternatives have people found? Is there any equivalent? I have not found anything yet. I figure I have 1 year or at most 2 years before I must have something else in place. ..As it looks today.. > I have a lot of content created in FWBuilder and manage many server's > policies with the tool. I have 3 big firewalls with 300 or so rules i (blade-servers with 2x splitted in 4x 10GB NICs), and about 20 routers/firewalls on everything from 1GB to 100GB links (these are mainly Intel NUCs). .. and about 4 VPN terminators (virtual) .. and some smaller things I forget about right now.. All of them sharing objects i FWBuilder. All of them are running IPTables (Linux) Most of them have multiple VLANS on all interfaces. I also run QoS on one of the big firewalls and on the 20 routers (htb and sfq qdiscs). Marking for the right QoS que is done in the FWBuilder ruleset. So, yes, I have a lot of content too ;-) > > Aside: It is sad such a mature application with apparently such a good > user base just drops dead. There really are no possible alternative > maintainers? As long as the original authors and current fwbuilder.org owners stays silent, there is not much else to do than fork.. whois fwbuilder.org says : Updated Date: 2015-05-21 Registry Expiry Date: 2018-06-25 Admin Email:dn...@pr... I was hoping that something like fwbuilder shows up for nftables, but nothing on that so far mvh Nils Olav Fossum |