Section: .. / linux / firewall /
| /// File Name: |
fwmon-1.0.6.tar.gz |
Description:
|
fwmon is a firewall monitor for Linux which integrates with ipchains to give you realtime notification of firewall events. It has fairly customizable output, allowing you to display a packet summary, hex, and ascii data dumps to stdout, a logfile, or tcpdump-style capture files. It also boasts some simple security features such as the ability to chroot itself, and does not need to run as root.
| | Homepage: | http://sourceforge.net/project/showfiles.php?group_id=13315 | | Changes: | A syslog logging facility has been added. When using chroot, fwmon now opens logfiles AFTER chrooting. Some of the documentation has been updated. RPM and Makefile install locations have been consolidated. A README.chroot file has been added as a quick guide to getting fwmon running in a chroot jail and with lowered privileges. | | File Size: | 27153 | | Last Modified: | Apr 30 19:28:28 2001 |
| MD5 Checksum: | 8a6be5254a6a15b7bf0418c257a6954d |
|
| /// File Name: |
fwmon-1.0.5.tar.gz |
Description:
|
fwmon is a firewall monitor for Linux which integrates with ipchains to give you realtime notification of firewall events. It has fairly customizable output, allowing you to display a packet summary, hex, and ascii data dumps to stdout, a logfile, or tcpdump-style capture files. It also boasts some simple security features such as the ability to chroot itself, and does not need to run as root.
| | Homepage: | http://sourceforge.net/project/showfiles.php?group_id=13315 | | Changes: | Lots of bugfixes were made, as well as some documentation fixes. Plenty of testing was done. This version is stable. | | File Size: | 25744 | | Last Modified: | Apr 25 16:37:16 2001 |
| MD5 Checksum: | 5044b299ece9db7f5689744c8021d769 |
|
| /// File Name: |
if-1.4.9b.tar.gz |
Description:
|
Iridium Firewall is a very strong ipchains-based firewall with support for 21+ network services (including DHCP, NFS, SMB, HTTP, FTP, Telnet, etc.), masquerading, online gaming, multicasting, TOS flags, and specific port and IP blocking. Protections include twelve different types of IP spoofing, stuffed routing/masquerading, DoS, smurf attacks, control of the full range of ICMP datagrams, and many more. The script is configured completely through the use of a configuration file; no code hacking is required, but it is written so that users that know what they are doing can easily configure the script themselves. Iridium Firewall is heavily commented with instructions and explanations on various topics.
| | Homepage: | http://www.karynova.com/iridium | | File Size: | 25101 | | Last Modified: | Apr 22 14:23:33 2001 |
| MD5 Checksum: | 286ba32bffe4c9411fb7c4d0b92363aa |
|
| /// File Name: |
fwmon-1.0.4.tar.gz |
Description:
|
fwmon is a firewall monitor for Linux which integrates with ipchains to give you realtime notification of firewall events. It has fairly customizable output, allowing you to display a packet summary, hex, and ascii data dumps to stdout, a logfile, or tcpdump-style capture files. It also boasts some simple security features such as the ability to chroot itself, and does not need to run as root.
| | Homepage: | http://sourceforge.net/project/showfiles.php?group_id=13315 | | Changes: | Lots of new documentation was added, including a man page. A few bugfixes were made. Documentation on using fwmon with iptables was also added. | | File Size: | 24978 | | Last Modified: | Apr 22 15:45:16 2001 |
| MD5 Checksum: | a65d47eec7d0f3639411fbb714657b11 |
|
| /// File Name: |
fwmon-1.0.3.tar.gz |
Description:
|
fwmon is a firewall monitor for Linux which integrates with ipchains to give you realtime notification of firewall events. It has fairly customizable output, allowing you to display a packet summary, hex, and ascii data dumps to stdout, a logfile, or tcpdump-style capture files. It also boasts some simple security features such as the ability to chroot itself, and does not need to run as root.
| | Homepage: | http://sourceforge.net/project/showfiles.php?group_id=13315 | | File Size: | 20528 | | Last Modified: | Dec 19 13:14:09 2000 |
| MD5 Checksum: | ef2a216529cda4c9bb0712db7409cbb4 |
|
| /// File Name: |
ip_scfw-0.9.1.tar.gz |
Description:
|
The SYN cookie firewall implements syn cookie syn flood protection on all hosts behind it. Contains a patch to Linux kernel 2.2.17 and an administration tool.
| | Homepage: | http://www.bronzesoft.org/projects/scfw | | File Size: | 18678 | | Last Modified: | Oct 21 03:02:27 2000 |
| MD5 Checksum: | 35b808ade7e0faa9571b7feb2fb0c5c4 |
|
| /// File Name: |
fireparse.tgz |
Description:
|
Fireparse is a perl script that is executed daily that e-mails a report of all packets that have been logged by the v2.2.x kernel's ipchains packet filtering subsystem. The report includes source and destination ports, direction, packet count, ipchains rule, and fully resolved host name. The e-mail report can be formatted plain text or a colorized HTML table.
| | Author: | Aaron D. Marasco | | Homepage: | http://aaron.marasco.com/linux.html | | File Size: | 18239 | | Last Modified: | Apr 6 21:45:57 2001 |
| MD5 Checksum: | 0ad965be905c378fbbefdd1d2ea3ef8b |
|
| /// File Name: |
firelogd-1.1.tgz |
Description:
|
Firewall Log Daemon provides two programs, chaindaemon and tabledaemon, that you can choose between, depending on your firewall type (ipchains or iptables-netfilter). The program will start a small daemon process that parses and resolves firewall logs in real-time by reading a FIFO that syslog writes to. It will queue a batch of alerts and mail them to you. It features hostname, port, protocol, and ICMP type/code lookup, with formatted output for easy reading.
| | Homepage: | http://www.speakeasy.org/~roux | | Changes: | Firewall Log Daemon provides two programs, chaindaemon and tabledaemon, that you can choose between, depending on your firewall type (ipchains or iptables-netfilter). The program will start a small daemon process that parses and resolves firewall logs in real-time by reading a FIFO that syslog writes to. It will queue a batch of alerts and mail them to you. It features hostname, port, protocol, and ICMP type/code lookup, with formatted output for easy reading. | | File Size: | 17194 | | Last Modified: | Dec 2 15:52:57 2000 |
| MD5 Checksum: | 1a36a57487b0d832655bced689b66bb4 |
|
| /// File Name: |
return-rst-1.1.tar.gz |
Description:
|
Return-RST is a firewalling tool for Linux 2.2.xx systems using IPCHAINS. It uses the netlink device to capture packets and sends TCP RST packets in response to TCP connection requests. Normal IPCHAINS only allows you to drop packets, or reject packets with an ICMP error message. With Return-RST, you can make it look like there is no server listening, rather than giving away that they're being filtered to the attacker.
| | Author: | N. Bellamy | | Homepage: | http://www.bellamy.co.nz/section5.html | | Changes: | New features include logging of blocked packets, filtering by netlink mark value, and documentation updates. | | File Size: | 13213 | | Last Modified: | Aug 15 20:57:36 2000 |
| MD5 Checksum: | 51793b50b7f55810fcf2aaac031cb259 |
|
| /// File Name: |
fwdumpd-1.00.tar.gz |
Description:
|
fwdumpd is a daemon which communicates with the kernel firewall using the netlink socket interface and copies packets marked for outputs to user space (usually using the -o of ipchains) to a binary capture file. This file is compatible with tcpdump and several other analysis programs. It is now possible to inspect all those denied packets.
| | Author: | Francis J. Lacoste | | Homepage: | http://indev.insu.com/Fwctl/fwdumpd.html | | File Size: | 12484 | | Last Modified: | Feb 22 14:26:59 2000 |
| MD5 Checksum: | 26e92908b29acc8a558367b628494f28 |
|
| /// File Name: |
fwbuilder-1.0.6.tar.gz |
Description:
|
Firewall Builder consists of object-oriented GUI and set of policy compilers for various firewall platforms. In Firewall Builder, firewall policy is a set of rules, each rule consists of abstract objects which represent real network objects and services (hosts, routers, firewalls, networks, protocols). Firewall Builder helps user maintain database of objects and allows policy editing using simple drag-and-drop operations. Firewall Builder can be used to manage firewalls built on variety of platforms including, but not limited to, Linux running iptables and FreeBSD or Solaris running ipfilter. Screenshots available here.
| | Homepage: | http://www.fwbuilder.org | | Changes: | Bug fixxes. | | File Size: | 11263 | | Last Modified: | Oct 1 02:26:58 2002 |
| MD5 Checksum: | 035d35728c159a25ee41494f53fb53af |
|
| /// File Name: |
fwbuilder-1.0.8.tar.gz |
Description:
|
Firewall Builder consists of object-oriented GUI and set of policy compilers for various firewall platforms. In Firewall Builder, firewall policy is a set of rules, each rule consists of abstract objects which represent real network objects and services (hosts, routers, firewalls, networks, protocols). Firewall Builder helps user maintain database of objects and allows policy editing using simple drag-and-drop operations. Firewall Builder can be used to manage firewalls built on variety of platforms including, but not limited to, Linux running iptables and FreeBSD or Solaris running ipfilter. Screenshots available here.
| | Homepage: | http://www.fwbuilder.org | | Changes: | Bug fixxes. | | File Size: | 11248 | | Last Modified: | Dec 29 05:55:55 2002 |
| MD5 Checksum: | 9f889dd8219415ee4acef34651b3ad7f |
|
| /// File Name: |
return-rst-1.0.tar.gz |
Description:
|
Return-RST is a firewalling tool for Linux 2.2.xx systems using IPCHAINS. It uses the netlink device to capture packets and sends TCP RST packets in response to TCP connection requests. Normal IPCHAINS only allows you to drop packets, or reject packets with an ICMP error message. With Return-RST, you can make it look like there is no server listening, rather than giving away that they're being filtered to the attacker.
| | Author: | N. Bellamy | | Homepage: | http://www.bellamy.co.nz/section5.html | | File Size: | 11068 | | Last Modified: | Aug 9 04:45:19 2000 |
| MD5 Checksum: | a4a26ee110d5dd7a1f426a2ce07e98fa |
|
| /// File Name: |
shellter-0.9.5.tar.gz |
Description:
|
ShellTer is an iptables-based firewall. What sets it apart from the rest is that it has built-in SSH brute force protection. It is easy to configure and has an interactive CLI installer.
| | Author: | marcos pinto aka markybob | | File Size: | 10275 | | Last Modified: | Feb 9 00:13:46 2006 |
| MD5 Checksum: | 456f9e26f0144c50d42662eebd02361c |
|
| /// File Name: |
dynfw.tgz |
Description:
|
DynFW for ipchains constantly checks /var/log/messages for packets denied by ipchains and responds by temporarily setting up firewallrules that deny any access from the originating IPs. Optionally it can do an ident lookup before setting up the rules.
| | Author: | Marcus Schopen | | Homepage: | http://www.uni-bielefeld.de/~schoppa/dynfw/ | | Changes: | using perl module tail instead of system's tail binary, starting & stopping is handled by pid, deleting rules after stopping, and inserting rules after restarting. | | File Size: | 4723 | | Last Modified: | Feb 22 18:35:49 2000 |
| MD5 Checksum: | 8846bf02d1cfa1d2e304d9ad8d814c38 |
|
| /// File Name: |
ipch-1.8.tar.gz |
Description:
|
ipch-select is a small Perl script for printing certain ipchains log entries based on logical expressions.
| | Author: | Rainer Weikusat | | Changes: | Fixed a bug that prevented ICMP 0 (echo reply) from being selected. | | File Size: | 3240 | | Last Modified: | Feb 2 15:23:58 2000 |
| MD5 Checksum: | c08f5480b7faad3e049b75af1021e783 |
|
| /// File Name: |
ipch-1.6.tar.gz |
Description:
|
ipch-select is a small Perl script for printing certain ipchains log entries based on logical expressions.
| | Author: | Rainer Weikusat | | File Size: | 3212 | | Last Modified: | Jan 20 16:46:26 2000 |
| MD5 Checksum: | 739a5fd6a19df5f344cbe1f1d46717ef |
|
| /// File Name: |
dynfw-1.0.tar.gz |
Description:
|
dynfw is a collection of robust bash scripts that automate common iptables firewall-related tasks, such as blocking hosts, ratelimiting access to services, ratelimiting specific hosts, preventing a user on the system from generating any network data, and more. These scripts have been designed to work with virtually any type of iptables-based Linux firewall. All tools record the IP/UIDs currently blocked/limited to allow for easy rule modification.
| | Homepage: | http://www.gentoo.org/projects/dynfw.html | | File Size: | 2125 | | Last Modified: | Apr 22 15:33:08 2001 |
| MD5 Checksum: | 0908184e44ae48ae26c6821f37e6ad58 |
|
| /// File Name: |
fw_module.tgz |
Description:
|
fw_module is a Linux 2.0.x kernel module which allows you add extra code for checking of packets.
| | Author: | Galt | | File Size: | 2106 | | Last Modified: | Dec 10 16:32:59 1999 |
| MD5 Checksum: | fa85a424ebeb6648beee125e4cfce4ba |
|
| /// File Name: |
snuffi-0.1.tar.gz |
Description:
|
Snuffi v0.1 is a linux kernel module that adds a hook to the incoming and outgoing queue of netfilter. Currently this module only supports traffic for IPv4 and TCP.
| | Author: | Maik Pfeil | | Homepage: | | | File Size: | 1809 | | Last Modified: | May 12 00:48:54 2003 |
| MD5 Checksum: | 72173ce735d297eebd4eca9bc113c829 |
|
| /// Directory: |
/ iptables / |
Description:
|
Unavailable.
| | Total Files: | 78 | | Last Modified: | Mar 21 18:50:04 2008 |
|
| /// Directory: |
/ firestarter / |
Description:
|
Firestarter is a GUI for building linux firewalls which uses GTK
| | Total Files: | 14 | | Last Modified: | Sep 5 22:25:17 2007 |
|
| /// Directory: |
/ gshield / |
Description:
|
gShield is an aggressive, modular, ipchains-based firewall script.
| | Total Files: | 13 | | Last Modified: | Sep 5 22:25:24 2007 |
|
| /// Directory: |
/ fwctl / |
Description:
|
Fwctl is a program that intends to make it easier to configure a tight firewall.
| | Total Files: | 9 | | Last Modified: | Sep 5 22:25:21 2007 |
|
| /// Directory: |
/ ipchains-firewall / |
Description:
|
ipchains-firewall is an easily-configurable shell script to establish masquerading and firewalling rules using ipchains.
| | Total Files: | 9 | | Last Modified: | Sep 5 22:25:27 2007 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
