|
(Page 6 of 16) < Prev 1 2 3 4 5 6 7 8 9 10 11 Next > Category: Auditing » Network » Firewall IPA Added 2003-11-12 IPA allows one to perform IP accounting based on FreeBSD IPv4/v6 Firewall, OpenBSD Packet Filter, and IP Filter accounting rules on Free/Net/OpenBSD. It supports limits for accounting rules, and limits events such as "limit is reached" and "reached limit is expired." It also has a flexible configuration file with many sections and options. ipfreeze Added 2003-11-03 Ipfreeze is a program that listens to the netlink device. It takes the source address from every incoming packet and adds it to a Netfilter "blacklist" chain. The address is removed from this chain after a user-definable period of time. This allows you to create rules that detect and halt certain odd behaviors, such as ports scans, syn floods, or connection attempts on forbidden ports. The attacker's IP address is blacklisted using the QUEUE target. There is also a whitelist where you can declare hosts that you never want to be blacklisted. Lutel Firewall Added 2003-10-30 Lutel Firewall Script is a Linux iptables shell script written in bash for use as a firewall and NAT/masquerade router for home networks or multiple subnet applications. It shares access to an Internet connection from multiple workstations. Its main features are support for interface aliases, per subnet traffic definitions, UID and GID of packet owner restrictions, length of packet restrictions, SYN / flood protection, disabling routing between subnets, masquerading setups per subnet, transparent proxy support, port redirection, anti-spoof protection, TOS optimization, predefinied netfilter marking for 3rd party traffic shapers (such as tc), DHCP support, FTP active and passive mode support, and ZorbipTraffic. sensorTrends Added 2003-10-30 sensorTrends is a Web-based application that displays a high-level view of the ports that are being scanned over the course of time. The display is similar to the look and feel of incidents.org and Dshield.com. There are also quick links to correlate your data with incidents.org and Dshield.com. Supported log formats are Cisco router Access Control Lists (ACLs) syslog output, Cisco PIX firewall syslog output, Snort's portscan.log files, and NetScreen syslog output. pixlog Added 2003-10-22 pixlog is a program used for logging info level messages from a Cisco PIX firewall. At this level, several megs of information can be generated per minute, so saving all that information to a file for later parsing isn't practical. pixlog works by sitting on FIFO, and parsing the data as it comes in. It can then write out what it has recorded, in HTML format. Arno's IPTABLES Firewall Script Added 2003-10-22 Arno's Iptables firewall is a script which was originally derived from Seven's iptables script. One of the biggest differences is that this script also has support for ADSL modems. It also features stealth scan detection, extensive user-definable logging with rate limiting to prevent log flooding, masquerading and port forwarding (NAT), optimizing the throughput of your connection, protection against SYN/ICMP flooding, and much more. It's easy to configure and highly customizable. It includes a filter script (fwfilter) to make your firewall log more readable. FireHOL Added 2003-10-14 FireHOL is a script producing stateful iptables firewalls. It can control any number of internal/external interfaces, offers control on any combination of routed traffic, sets up DMZ routers and servers and all kinds of NAT, provides strong protection (flooding, spoofing, etc), transparent caches, and more. Its goal is to be completely abstracted and powerful but also easy to use, audit, and understand. High Level Firewall Language Added 2003-10-09 High Level Firewall Language permits writing firewalling rules using a high-level language, and transforms them into rules for real software like ipfilter, ipchains, or Cisco firewalls. quicktables Added 2003-09-04 quicktables is an iptables firewall/NAT (gateway) script generator. It was created to quickly provide a secure set of iptables rules. It will ask you to answer a small handful of questions, and generates your very own personalized firewall script. It supports NAT and no NAT (firewall only) options, default policy of DROP on INPUT and FORWARD chains (all packets dropped), TCP and UDP ACCEPTs on INPUT chain (open ports to the firewall machine), TCP and UPD port forwarding with NAT (forward ports to multiple internal hosts--NAT only), multiple ICMP (ping) options, multiple logging options (syslog - kern.info), explicit host drops, and multiple port forwards for multiple external IP addresses. FWReport Added 2003-08-26 FWReport is a log parser and reporter for IPTables. It generates daily and monthy summaries of the log files, allowing the admin to free up substantial time, maintain better control over security of the network, and reduce unnoticed attacks. Browse by category |
|
|
Privacy Statement |
