Shorewall is an open-source Linux firewall configuration tool written in Perl. As a user-friendly command-line front-end for iptables/tc utilities, Shorewall stores firewall policies in high-level, easy-to-understand plain-text configuration files. The built-in Shorewall compiler then compiles high-level firewall configurations into an executable firewall creation script which in turns invokes iptables and tc. Shorewall supports a wide range of firewall rules, based on blacklisting, masquerading (SNAT), port forwarding (DNAT), one-to-one static NAT, proxy ARP, traffic shaping, connection rate limiting, traffic accounting, IPv6, multiple zones, tunneling encapsulation (IPsec, GRE, OpenVPN, PPTP), etc. While Shorewall is a standalone command-line tool, Shorewall can be integrated with Webmin, which allows Shorewall’s firewall configurations to be managed via web-based interface.
Subscribe to Xmodulo List
Do you want to receive posts about Linux applications and software recommended by Xmodulo List? Enter your email address below, and we will deliver our recommendations straight to your email box, for free. Delivery powered by Google Feedburner.