OSDN -- Develop and Download Open Source Software

RSS
Download List

Project Description

Arno's IPTABLES Firewall Script is a secure stateful firewall for both single and multi-homed machines. It supports NAT and SNAT, port forwarding, ADSL ethernet modems with both static and dynamically assigned IPs, MAC address filtering, stealth port scan detection, DMZ support, protection against SYN/ICMP flooding, experimental IPv6 support, multi-interface/aliased-IP support, and extensive user definable logging with rate limiting to prevent log flooding. It has plugin support to add extra features (like SSH Brute Force protection and (Racoon) IPSEC support). It is easy to configure and highly customizable. A filter script that makes your firewall log more readable is also included.

System Requirements

System requirement is not defined
Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2005-01-12 20:21
1.8.3-BETA4

External DHCP client support for some ISPs has been changed. A bug in the the anti-spoof protection for the internal subnet has been fixed. There are miscellaneous other changes and fixes.
Tags: Minor bugfixes

2004-06-20 16:18
1.8.3-BETA3

This release adds support for multiple external interfaces (and
multi-route masquerading), SMTP, FTP, and POP3 transparent proxies,
IPv6 (no filtering), DMZ-to-LAN forwarding, and MAC address filtering
for internal hosts. It's strongly recommended that you upgrade your
configuration file.
Tags: Minor feature enhancements

2004-01-08 19:40
1.8.2

Detection of the iptables module uses wildcards now (iptables.* instead of iptables.o or iptables.o.gz). This fixes problems with the new Linux 2.6 .ko modules. The HIGHER_CONNTRACK variable has been obsoleted in favor of the new CONNTRACK variable. This variable allows you to configure any number of maximum connections to track. fwfilter has been updated to be able to use NAWK (Debian) for real-time logging. Logging of DHCP broadcasts and UDP packet watching/blocking have been fixed. It is strongly recommended to update your configuration file with the (new) one inside this package.
Tags: Minor bugfixes

2003-10-22 09:57
1.8.1RC-2

This version fixes LAN_DENY rules for multiple internal
interfaces, adds drop/logging of source port 0 packets,
adds new variables LOG_xxx_INPUT to log specific
incoming connections, and fixes local OUTPUT blocking.
Tags: Minor bugfixes

2003-09-23 10:13
1.8.1RC-1

DHCP on the external interface was fixed. NAT/
FORWARD was fixed for some exotic cases. A
complete code and variable review was made,
resulting in many renamed variables. It is
strongly recommended that you use the new config
file.
Tags: Minor bugfixes

Project Resources

Project Page Home Page