Firewall is a user-friendly software package consisting of firewall, fwup, and fwdown scripts for ipchains that enable users to secure their networks by controlling traffic flow between servers and clients.
One of the best things about this software is how easy it is to set up. All you need to do is read the policy file and make edits to reflect your network topology and filtering policy. The policy file is broken down into sections, each of which requires you to specify trusted and untrusted network interfaces, this host's role within the network topology, and the incoming and outgoing services that should be allowed.
Thanks to its sophisticated design, editing the policy file is a breeze. Each section of the file comes with detailed explanations and advice, including when to start the firewall and how to safely allow various internet services. The goal is to help administrators quickly master packet filtering so they can make informed security decisions and maintain effective network security in a short amount of time.
Although Firewall can't guarantee perfect network security, it does come with a number of key features that make it an excellent option. These features include single-host configuration (with no forwarding or address/port translation), forwarding (with no address/port translation), masquerading (for outgoing M:1 NAPT), port forwarding (which involves masquerading and incoming 1:M NAPT), alias port forwarding (for masquerading and incoming N:M NAPT), and static NAT (for incoming and outgoing 1:1 NAT).
If you are in need of a powerful and customizable firewall solution that can be quickly configured to suit your network's unique needs, then Firewall is definitely worth checking out.
Version 20020626: N/A