Menu

Simplewall User Guide

Simplewall

Simplewall delivers the world's simplest and most user friendly UTM for small & medium sized businesses globally to protect their business networks, maximize bandwidth usage and define personalize content filtering policies for employee productivity. Most importantly, Simplewall is easy to setup and manage for the system administrator as well as to the business owner.

Simplewall combines the power of a full featured firewall, gateway anti-virus, intrusion prevention and country blocking into one simple system.

Web Setup Wizard:

Initial web login username: admin password : better2009 start with web setup wizard its only three easy steps.

Setup Network 

Update Local and Internet interface IP address show updated entry by simplewall console setup tool.

Setup DNS

Update DNS  show updated entry if already done by simplewall console setup tool.

Setup DHCP [optional]

Update DHCP Lease, IP address range.

Dashboard :

Simplewall Services

  • Essential simplewall modules activate/deactivate using ON/OFF button
  • Link for modules advance configuration

System Status

  • Simplewall system status like
  • Cpu, Ram, disk Status, current In/Out bandwidth

Simplewall Alerts

  • System alerts
  • Protection alerts
  • Content filter alerts
  • User alerts

Reports :

  • Reports options by Date, by Patterns, by User/Group
  • Option exporting report to XLS/CSV .

Antivirus Report

  • Gateway antivirus show blocked Urls user wise in reports
  • alerts are also generated on dashboard

Intrusion Report

  • Drop rules shows red highlighted
  • The essential alerts for torrents, p2p, voice call etc .

Iptables Block Report

  • Iptables rule custom logs
  • logs for drop rules
  • it also contains the country-wise ip block rules logs

Content filter Report

  • User/group web content reportse
  • Reports are sorted by requested hits and request size
  • Date filter, search, export makes reports view flexible

Blocked Content Report

  • shows all blocked content filter reports
  • Search filter and export work for specific ip OR user

Bandwidth Utilization Report

  • Shows the bandwidth usage hourly
  • Shows hourly incoming and outgoing bandwidth

Bandwidth Shaping Status

  • Status of applied tc-qos bandwidth rules

Current Net status

  • Current netstat output for tracking connections and services

Protection :

Antivirus protection

  • Clam-av gateway antivirus provides virus and malware signatures .
  • ON/OFF option
  • scanning options .

Intrusion Protection

  • Simplewall uses Multithreaded Intrusion prevention open source system named Suricata .
  • signatures from Emerging Threats is an open source community project
  • interface provides default on/off and rules selection option.

Default Services

  • Most common protocol services by port managed in form
  • Admin can add custom rules as per requirement

IP Filter Rules

Simple interface for iptables incoming outgoing rules with flexible options

  • DROP
  • LOG with custom log message
  • REJECT
  • ACCEPT

Advanced IP Filter Rules

  • Extended interface for iptables forward rules with flexible options such Drop/Log/Reject/Accept .

Proxy Blacklist

  • Proxy blacklist is squidguard integrated to squid provides standard urls block list
  • Default on/off option , redirect url option , blacklist selection option, add exception urls to blacklist

Country Based Ip Block

  • Netfilter GeoIP module with database of country wise blocked ip addresses by authority .
  • Regularly updated database minimize network attack from infected ip address.

Port Scan Protection

  • Default on/off option
  • Add/edit list of ports for inbound as well as outbound
  • It blocks the origin scanning ip address or pool for 24 hours and then release automatically

Bandwidth Manager :

System Bandwidth Settings

  • TC Qos based traffic shaper hierarchical token bucket [HTB ]
  • Rules are auto generated
  • Default on/off option
  • Rules based on port , ip address for inbound/outbound traffic

Proxy Bandwidth Settings

  • Its Squid delay pool feature used for managing http web traffic passing through content filter.
  • Default on/off option

Content Filter :

Its squid access control list [ACL], simplewall content filter section includes important acl management for managing acl rules data .

Dstdomain : acl for urls

  • Good Websites
  • Bad Websites

Url_regex : acl for url patterns

  • Allowed Patterns
  • Banned Patterns
  • Keywords Policies

Src : acl for ip address

  • Ip based policies

Port : acl for ports

  • Port based policy

Browser : acl for browser types

  • Browser type policies

Time : acl for time based restriction rules for all type of acl

  • Time based policy

Time Quota Policy : it is dstdomain policy

  • Urls managed to allow random use for specific hours for list of urls to each users

Custom policies : provision for adding custom rules almost all above access control types rules

Users/Group :

  • Access control management is user level .
  • User/group are made editable with respective links.
  • User/group creation has two option
  • Form for manual user/group addition
  • Import from csv/xls specified format files .
  • Sample format made available with link to download .
  • User policy managed with groups however user can have policy independent of group .

Access Control Management

  • Each User/group has Manage link its provides all option that can be applied easily
  • Content filter rules which having rules will appear in manage link
  • Time based rules appears as extensions

Apart from content filter section rules manage provides few other important squid acls as below

Reply_body_max_size:

  •  Acl for control over max Download Size of content for user

Allocate Bandwidth

  • Squid delay pool under Bandwidth Management -> Proxy Bandwidth Settings
  • For applying configured proxy bandwidth rules on user/group

Settings :

Network settings

  • Web interface form to configure local and internet interface
  • Simplewall setup tools console program is interconnected with it

Port Forward

  • Port forwarding external services based on port hosted in local machine behind firewall with the available public ip address

Network Alias

  • Network alias is the provision for adding multiple ip aliases on both internet and lan interface , its is useful in advanced setup for hosting services behind the firewall

Alias Port Forward

  • Alias ip port forwarding external services based on port hosted in local machine behind firewall with the available public ip address

DNS

  • Name service configuration option, Simplewall setup tools console program is interconnected with it .

DHCP

  • Dynamic host configurations server included in simplewall
  • Option for  adding  static ip address entrys with MAC ID
  • Ip address range
  • Lease time

License

  • License key upload generated on mac id from simplewall site
  • Used for client identity for tracking bugs simplewall component updates

Password

  • Option for admin password update

Error Messages

  • Squid acl policy denied info messages managed by this form

Setup Wizard

  • Quick setting wizard if something went wrong

Backups

  • Tool for configuration backup
  • Option for restore settings
  • Option for scheduled backup

Date and Time

  • Option for time zone set
  • Override option for system time and date

Data cleanups

  • Option for cleanup old reports data
  • Option schedule data cleanup
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.