Hi there,
have anyone tested the free firewall suite from www.opensourcefirewall.com
I looks to be a full size firewall with ALOT of features, however the scheme
is to buy the cdrom in order to compile. The compile scripts included in the
source is not working properly. Have anyone succeded?
Have a look, here is a list of features, looks almost too good to be true
Operating Systems
AIX 4.2.x+, Solaris 2.6+, Linux (RedHat 6.1+, SUSE 6.4+)
Lan Interfaces
Ethernet, Fast Ethernet, Gigabit Ethernet, FDDI, Token Ring, ATM 155,
622
VPN
IPSec
VPN Encryption standards
DES, DES-56, DES-128, Triple DES
Hardware Based Encryption
Supported
Other uses of encryption
Secure remote administration
Authentication supported
SecureID, CryptoCard, ActiveCard
Enable/Disable FTP commands
User or Group basis, time of day, day of week
Workload Balancing
HTTP and most TCP/IP server applications
Proxies
FTP, HTTP, SMTP, NTP, RealAudio, NNTP, gopher, telnet, LDAP, Lotus
notes, SQL, UDP, RPC, tftp
Third Party Software
Lotus Notes, Oracle, Sybase, Informix, Microsoft MailExchange, Netscape
Secure Commerce Server, OASIS, RealAudio, Hummingbird Exceed, Netmanage
Chameleon, Assurenet/Digital Pathways DSS Server, Microsoft ProxyServer
SOCKS
Version 5
NAT
Supported
X11
Supported
URL Content Filtering
Integrated into HTTP Proxy
Blocking of ActiveX, cookies,
Java & Javascript
Integrated into HTTP Proxy
Denial of Service Attacks
Stops Ping of Death, SYN Flood, Tear Drop, mal-formed packets, tiny
fragments
Can modify security policy to
restrict all traffic from nodes
which attempt breakin
Yes
Real Time Alerts
Yes
Blocks and logs IP Spoofing
Yes
Logs attempts when access is denied
Yes
Centralized Management
Yes
Time Based Access Controls
Yes
Local Management
Yes, GUI & Command Line
Remote Management
Yes, GUI & Encrypted Telnet
Encryption of Remote Management Sessions
Yes
Strong User Authentication
for Remote Management
Yes
Centralized configuration backup
Yes
High Availiability Feature
Full redundancy solutions with 99.999% availiability
Disk Space Monitor
Multiple alert levels by file system
Log Full Condition
Escalating Alerts to administrator
Automated Log Scanning
Yes
Automated log reporting or
log report writer
Both
Can remote log
syslog, HTTP, access logs
Alarm notification
e-mail, page, SNMP trap
Provide summary reports by
user ID or IP address
Yes
Offers real time statistics
Yes
Performance Monitor
Yes; CPU, Memory, Network, disk usage
Maybe an idea for future Mandrake distros?
Mads Rasmussen / Ci&T systems
www.cit.com.br
Keep in touch with http://mandrakeforum.com:
Subscribe the "[EMAIL PROTECTED]" mailing list.
