FIAIF is a smart firewall software that has advanced capabilities to protect computer networks from unauthorized access by filtering network traffic based on set rules.
The script utilizes state-full firewalling, and all RELATED and ESTABLISHED packets are accepted on all chains. If you wish to block something out, you can simply choose not to accept it in the first place. FIAIF is written in BASH, which means that there is no need to install extra interpreters on your firewall, allowing for a minimalistic installation on your firewall.
Here are some key features of "FIAIF is an Intelligent Firewall": TOS bit can be set per protocol/port basis, limit syslog logging, specification of multiple zones - One or more per interface, load specific connection tracking modules, examination of /proc/sys/net setting, setup of Linux runtime parameters, run user-defined commands before and after applying the firewall, syslog scanning, and zones support.
Zones support includes handling of dynamic IP's (DHCP), interfaces with multiple IP addresses, allowing/dropping and/or rejecting packets hitting the firewall from the zone, restricting the type of packets originating from the firewall itself, restricting packets coming from other zones, banning IP's within the zone, banning MAC addresses within the zone, watching traffic from a specific IP, limiting the number of specific packets, port forwarding, changing the destination IP and port, allowing e.g. a transparent proxy, masquerading/SNAT, traffic shaping per interface, ulogd logging support, packet marking, for e.g. advanced routing, and definition of IP aliases, to ease maintenance and improve the readability of configuration files.
Requirements are Linux kernel >= 2.4.4 with all iptables options enabled, either compiled in or as modules, bash >= 2.04, and iptables >= 1.2.6a.
The latest release adds HSFC-based traffic shaping, which is optimized for VoIP setups, and a problem where DHCP requests were getting dropped by the firewall has been fixed, as well as ACCEPT_LOG, which was not accepting packets correctly.
Overall, FIAIF is a comprehensive and customizable firewall that provides great protection without overwhelming the user with complicated code. Its multiple zones and various features make it an excellent choice for those looking for a flexible and reliable firewall solution.
Version 1.21.0: N/A