[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Savannah-hackers] savannah.gnu.org: submission of joes firewall
From: |
joeber |
Subject: |
[Savannah-hackers] savannah.gnu.org: submission of joes firewall |
Date: |
Fri, 24 May 2002 08:10:26 -0400 |
A package was submitted to savannah.gnu.org.
This mail was sent to address@hidden, address@hidden
<address@hidden> described the package as follows:
License: gpl
Other License:
Package: joes firewall
System name: joefw
This package does NOT want to apply for inclusion in the GNU project
Description:
joes firewall (joefw) is a simple and easy framework of files to manage a
firewall-policy with Linux iptables.
Its _not_ another big single iptables-script with a ready to run policy. You
should have a basic understanding of networking to use this.
Mainly it consists of a simple interpreter-script and a set of rule-files which
builds the firewall-policy. The big advantage is the combination of small files
(one file for one direction) with simple rules (one rule for one service) and
the connection tracking which makes it easy to build policies for complex
services.
For example you need FTP from you internal net with private adresses to the
internet, then you simple add this rule to the file \"int-ext\":
# allow ftp from intern net to extern
-A $R -j New -i $INT_IF -o $EXT_IF -p tcp --syn --dport ftp
Complete sample-policy with connection tracking and four interfaces (intern,
extern, dmz, ipsec-vpn) is included.
Other Software Required:
Linux Kernel 2.4, iptables, bash
Other Comments:
Author: Josef Bergmann <address@hidden>