OSDN -- Develop and Download Open Source Software

RSS
Download List

Project Description

FireHOL a simple yet powerful way to configure stateful iptables firewalls. It can be used for almost any purpose, including control of any number of internal/external/virtual interfaces, control of any combination of routed traffic, setting up DMZ routers and servers, and all kinds of NAT. It provides strong protection (flooding, spoofing, etc.), transparent caches, source MAC verification, blacklists, whitelists, and more. Its goal is to be completely abstracted and powerful but also easy to use, audit, and understand.

System Requirements

System requirement is not defined
Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2004-11-01 03:56
R5 v1.214

This is a major release and all users are advised to update. It includes new services: NIS, NUT, NNTPS, ASTERISK, DISTCC, ESERVER, GIFT, H323, IAX, ICP, RTP, SIP, STUN, UPNP, RDP, and more. Updated services: DHCP, SAMBA, and NFS. New helpers: TOS, DSCP, TCPMSS, and ECN_SHAME. New parameters: TOS, MARK, and DSCP. It has support for automatic installation of service definitions, better interoperability with various Linux distributions, updated RESERVED_IPS for current IANA IPv4 reservations, finer control on ACCEPTed traffic, the ability to control loopback access, and support for service groups.
Tags: Major feature enhancements

2004-05-03 03:41
R5 v1.191

This release features more services, including Oracle, Gkrellmd, DCC, and whois. CUPS has been fixed and Samba has been enhanced. There are new optional rule parameters, including PHYSIN and PHYSOUT. There is an updated MAC helper, better compatibility, better kernel module management, support for ULOG logging, and better iptables statement generation. PRIVATE_IPS has been updated for IANA reservations. There are various bugfixes. All users are advised to update to this version.
Tags: Major feature enhancements

2003-10-13 04:29
R5 v1.159

This release features more services (MSN, DCPP, Jabber, Jabberd, Webmin, time, Postgres, Hylafax, XDMCP, TFTP, and Veritas NetBackup). It has new helpers: MAC (global pairing of MAC and IP addresses), BLACKLIST (blacklist certain IPs, unidirectional or bidirectional), and MARK (mark packets for use by QoS). There are two new optional rule parameters: MAC (match source MAC address) and OWNER (match the user sending traffic). There is better interoperability with various distributions (mainly Gentoo), more control on kernel module management, cleaner iptables rules generation, better support for kernel 2.6.x, and more.
Tags: Major feature enhancements

2003-04-06 01:08
R5 v1.120

The main new feature of this release is the HELPME function that detects and produces the FireHOL configuration for the host run. Additionally, this release introduces a new PANIC mode which is now handled entirely by FireHOL, has better handling of the MIRROR target, has wider support for SNMPTRAP and SYSLOG, a definition for the SOCKS service, and better interoperability with various Linux distributions (e.g., Debian).
Tags: Major feature enhancements

2003-02-19 00:34
R5 v1.91

This release adds support for controlling log levels on a per rule basis, updated RESERVED_IPS variable according to the latest releases of IANA, and a few minor fixes to increase compatibility on various Linux distributions.
Tags: Minor feature enhancements

Project Resources

Project Page Home Page