Linux SoftwareSystemNetworkingFIAIF 1.20.0

FIAIF 1.20.0


FIAIF is an Intelligent Firewall. Unlike many other scripts, FIAIF can be truly customized allowing multiple interfaces (or rather
Developer:   Anders Fugmann
      more software by author →
Price:  0.00
License:   GPL (GNU General Public License)
File size:   174K
Language:   
OS:   
Rating:   0 /5 (0 votes)
Your vote:  
enlarge screenshot


FIAIF is an Intelligent Firewall.

Unlike many other scripts, FIAIF can be truly customized allowing multiple interfaces (or rather zones). There is no limit on the number of zones. All configuration is done through configuration files. There is no need to understand the script behind it all.

The script makes heavy use of state-full firewalling, and all RELATED and ESTABLISHED packets are accepted on all chains. If you wish to block something out, don't accept it in the first place.

The script is written in BASH. Though this is not the optimal programming language to use, it means that you do not need to install extra interpreters on your firewall. This allows you to have a minimalistic installation on your firewall.

Here are some key features of "FIAIF is an Intelligent Firewall":
  • TOS bit can be set per protocol/port basis. (To be used by traffic shaping).
  • Limit syslog logging.
  • Specification of multiple zones - One or more per interface.
  • Load specific connection tracking modules (FTP, IRC etc.).
  • Examination of /proc/sys/net setting, for possibly dangerous system configurations.
  • Setup of linux runtime parameters.
  • Run userdefined commands before and after applying the firewall.
  • Syslog scanning, giving more human readable output based on setup.

    Zones support:

  • Handling of dynamic IP's (DHCP).
  • Interfaces with multiple IP addresses.
  • Allow/drop and/or reject packets hitting the firewall from the zone.
  • Restrict the type of packets originating from the firewall itself.
  • Restrict packets coming from other zones.
  • Ban IP's within the zone.
  • Ban MAC addresses within the zone.
  • Watch traffic from a specific IP.
  • Limit number of specific packets, e.g. to avoid DoS attack.
  • Port forwarding, changing the destination IP and port, allowing e.g. a transparent proxy.
  • Masquerading/SNAT.
  • Traffic Shaping per interface.
  • Ulogd logging support.
  • Packet marking, for e.g. advanced routing.
  • Definition of IP aliases, to ease maintenance and improve readability of configuration files.

    Requirements:
  • Linux kernel >= 2.4.4 with - All iptables options enabled, either compiled in or as modules.
  • Bash >= 2.04 - The variable expansion in bash is heavily used.
  • iptables >= 1.2.6a.

    What's New in This Release:
  • Significantly improved traffic shaping.
    tags the zone  the firewall  traffic shaping  the script  configuration files  within the  from the  your firewall  per interface  intelligent firewall  

    Download FIAIF 1.20.0


     http://www.fiaif.net/dist/fiaif_1.20.0-0.1_all.deb
     http://www.fiaif.net/dist/fiaif_1.20.0-0.1.noarch.rpm
     http://www.fiaif.net/dist/fiaif_1.20.0.tar.gz


    Authors software

    FIAIF 1.20.0 (by Anders Fugmann)
    FIAIF is an Intelligent Firewall.

    Unlike many other scripts, FIAIF can be truly customized allowing multiple interfaces (or rather


    Similar software

    FIAIF 1.20.0 (by Anders Fugmann)
    FIAIF is an Intelligent Firewall.

    Unlike many other scripts, FIAIF can be truly customized allowing multiple interfaces (or rather

    Dwall 0.5.3 (by Dag Wieers)
    Dwall is an all-purpose firewall tool to generate an iptables firewall out of a simple configuration

    Shoreline Firewall 3.2.6 (by Thomas M. Eastep)
    Shoreline Firewall, more commonly known as “Shorewall”, is high-level tool for configuring Netfilter

    quicktables 2.3 (by diaolin)
    quicktables is an iptables firewall and firewall / nat (gateway) script generator

    HardWall Firewall 15 Stable-6 (by Alex Nee)
    HardWall Firewall is an iptables firewall script that provides port forwarding, packet filtering, stateful packet inspection, port re

    Quarantine firewall 0.2.1a (by Phil Cyc)
    Quarantine firewall is yet another firewall that has masquerade, type-of-service, and traffic shaping features.

    Simply do 'make in

    Lutel Firewall 0.99 (by Tomek Lutelmowski)
    LutelWall (formerly known as Lutel Firewall) is high-level linux firewall configuration tool

    IPTables Firewall Script 0.1 (by Obsid)
    IPTables Firewall Script contains two example firewall scripts "rc.firewall.iptables

    Turtle Firewall 1.37 (by Andrea Frigido)
    Turtle Firewall is a software which allows you to realize a Linux firewall in a simply and fast way.

    Turtle Firewall project is base

    Firetero 0.3 (by Tero Karvinen)
    Firetero is a firewall for a single computer


    Other software in this category

    Nmap 4.20 (by Fyodor)
    Nmap is a utility for network exploration or security auditing

    iptables 1.3.7 (by Harald Welte)
    iptables and netfilter are building blocks of a framework inside the Linux 2.4.x and 2.6.x kernel

    Linux Bandwidth Arbitrator 9.62 (by astormchaser)
    Linux Bandwidth Arbitrator allows beginning-to-advanced network administrators to control bandwidth

    Ettercap 0.7.3 (by ALoR NaGA)
    Ettercap is a network sniffer/interceptor/logger for ethernet LANs

    rdesktop 1.5.0 (by matthewc)
    rdesktop is an open source client for Windows NT Terminal Server and Windows 2000/2003 Terminal Services, capable of natively speakin

    •     search


    Featured Software

    jEdit 4.3 pre8
    jEdit is an Open Source text editor written in Java

    Opera 9.02
    Surf the Internet in a safer, faster, and easier way with Opera browser

    GNU Aspell 0.60.4
    GNU Aspell is a Free and Open Source spell checker designed to eventually replace Ispell


    Subscribe in Rojo
    Google Reader
    Add to My Yahoo!

    Add to My AOL
    Subscribe with Bloglines
    Subscribe in NewsGator Online
    Add 'nixbit linux software' to Newsburst from CNET News.com
    del.icio.us nixbit linux software


    Top tags