flex-fwA fast and small ash/dash front-end for Linux iptables | |
Download |
flex-fw Ranking & Summary
Advertisement
- License:
- GPL v3
- Price:
- FREE
- Publisher Name:
- Vitaly Druzhinin
- Publisher web site:
- http://code.google.com/u/VitalkaDrug/
flex-fw Tags
flex-fw Description
A fast and small ash/dash front-end for Linux iptables flex-fw is a small and fast frontend for Linux iptables software with an easy command syntax like ipfw or pf from BSD systems.Syntax example# Access from me to anybodyallow output to any# Access to my web serverallow input proto icmpallow input from any in-if $ifWan to $ipWan proto tcp dport http# Access to DMZ serverallow forward from any to $ipDmzServer in-if $ifWan out-if $ifDMZ proto icmpallow forward from any to $ipDmzServer in-if $ifWan out-if $ifDMZ proto tcp dport httpallow forward from any to $ipDmzServer in-if $ifWan out-if $ifDMZ proto tcp dport https# SNAT for LANallow forward in-if $ifLan from $netLan out-if $ifWansnat to-addr $ipWan out-if $ifWan from $netLan Here are some key features of "flex-fw": · service-oriented configuration. This makes it possible to start and stop access to each service separately and undependently without full stop the flex-fw. · network profile support. You can work with different network environments without any changes in the flex-fw setting. This is mostly used for notebooks. About the network profile see more /etc/net project. · macros support. Macros are user-defined variables that can hold an IP address, a port number, an interface name and etc. · easy migration to another network environment. All you need to do is redefine macros. · easy distribution to many hosts. With macros you can describe the services and distribute them to all owned hosts without any changes. · easy debug. Syslog logging support for iptables errors or droped packets. · interactive mode for manual configuring "on the fly". · batch mode for execution from shell scripts. · library mode for using of the flex-fw functions in your shell scripts directly. In my case it is the main mode. Requirements: · iptables What's New in This Release: · FIXED bad permissions for flex-fw files and directories. · ADDED help for "service" function · ADDED help for "start" function · ADDED help for "stop" function · CHANGED "verbose" default value to "1" · ADDED load necessary kernel modules listed in /etc/flex-fw/defines/modules from "start" function
flex-fw Related Software