firewall tools
introduction
- target audience
- You run a Linux based machine connected to the Internet, or a Linux based firewall/gateway box to isolate your local network from the big bad Internet. The author is in the latter group, with mixed WinXP and Linux boxes behind a Slackware-11.0 based firewall box.
slackfire firewall
- Visit http://slackfire.berlios.de for a highly configurable firewall installation script.
deltree firewall
The deltree firewall is written specifically for an Internet facing slackware firewall linux box that also provides ftp and web services.
- rc.firewall
- A bash script to install the deltree firewall for
systems with linux iptables from netfilter.org.
- The script above is an archive copy of a recent rc.firewall script as the current version is not available during the development cycle.
- firewall status
- Display current status of the deltree firewall on this
machine, these are jailed IPs, and IPs being rate monitored
as they access the server.
- This live information is from the new (development) rc.firewall on trial.
related projects
- junkshow
- display iptables firewall activity
- junkview
- source code for junkshow page
- IP geolocation server
- ip2cn-server for IP to country names lookup, used by various projects on this site
- netdraw
- monitor internet activity with charts and the last three month's usage summary.
log file filter, pretty printer
- download
- See the archive for tarball (~10k).
- sf4sf
- Script to display iptables firewall activity,
in particular it is designed to complement SlackFire!
but also works with other iptables based firewalls.
Many options make for easy site customisation. The
script is written in gawk (GNU awk) and is written
and tested on slackware-11.0 system with gawk 3.1.5.
- Documentation: the script contains all the documentation available at this time. Contact the author with suggestions or problem reports.
- sf4sf-extract-settings
- Script to extract user settings from the sf4sf script. Use this to create a custom settings, for example: /etc/sf4sf.conf.
- ansicolours
- Script to display the available ansi colour escape sequences for extended colour setting.
- ip2c-database
- Geolocation database tarball available as .gz, .bz2 and .lzma
compression.
- Default install location is /usr/local/share/junkview.
- junkview-data.tar.lzma
- Full junkview database, you may need lzma tools from http://tukaani.org/lzma/download or http://sourceforge.net/projects/p7zip/ to decompress this tarball.
- ip2c-database ER diagram
+----------------+ | ip2c-index | +----------------+ |*Record number* | +--------------+ | IP block start | | ip2c-names | | IP block end | +--------------+ | Country code |---|*Country code*| +----------------+ | Country name | +--------------+
other firewall scripts
- firewall-check-ssh-fail
- Script to scan /var/log/messages and report ssh login failures, producing an IP or CIDR block list to use with the firewall to block further loging attempts. May use ip2cn-server.