Jump to letter: [
ABCDEFHIJLMOPRSTW
]
arno-iptables-firewall - Single- & multi-homed firewall script with DSL/ADSL support
- Description:
After installation, edit /etc/arno-iptables-firewall/firewall.conf,
try "service arno-iptables-firewall start" and if satisfied permanently enable with
"chkconfig arno-iptables-firewall on"
Features
* Very secure stateful filtering firewall
* Both kernel 2.4 & 2.6 support
* Can be used for both single- and multi(eg. dual)-homed boxes
* Masquerading (NAT) and SNAT support
* Multiple external (internet) interfaces supported
* Supports multiroute NAT & SNAT (load balancing over multiple (internet) interfaces)
* Port forwarding (NAT)
* Supports MAC address filtering
* Support for DSL/ADSL modems
* Support for PPPoE, PPPoA and bridging modem setups
* Support for static and ISP assigned (DHCP) IPs
* Support for (transparent) proxies
* Full support for DMZ's and DMZ-2-LAN forwarding. You can also use it to isolate e.g. your wireless LAN.
* (Nmap)(stealth) portscan detection
* Protection against SYN-flooding (DoS attacks)
* Protection against ICMP-flooding (DoS attacks)
* Extensive user-definable logging with rate limiting to prevent log flooding
* Includes options to optimize your throughput
* User definable open ports, closed ports, trusted hosts, blocked hosts etc.
* Log & protection options are both highly customizable
* Support for custom iptables rules in a seperate file
* Can be used with chkconfig runlevel system (eg. RedHat/Fedora)
* Main focus on TCP/UDP/ICMP but additional support for *ALL* IP protocols
* Works with Freeswan IPSEC (VPN) & SSH Sentinel (http://www.freeswan.org) (+virtual IP's)
* Works with PoPTop PPTP (http://www.poptop.org)
* Works with UPnP
* DRDOS protection/detection (experimental)
* Easy to configure
* And much more...
Packages