Shorewall

Shorewall is an open-source Linux firewall configuration tool written in Perl. As a user-friendly command-line front-end for iptables/tc utilities, Shorewall stores firewall policies in high-level, easy-to-understand plain-text configuration files. The built-in Shorewall compiler then compiles high-level firewall configurations into an executable firewall creation script which in turns invokes iptables and tc. Shorewall supports a wide range of firewall rules, based on blacklisting, masquerading (SNAT), port forwarding (DNAT), one-to-one static NAT, proxy ARP, traffic shaping, connection rate limiting, traffic accounting, IPv6, multiple zones, tunneling encapsulation (IPsec, GRE, OpenVPN, PPTP), etc. While Shorewall is a standalone command-line tool, Shorewall can be integrated with Webmin, which allows Shorewall’s firewall configurations to be managed via web-based interface.


  • Website: http://shorewall.net/
  • Platform: Linux
  • License: GNU GPLv2+
  • Documentation: http://shorewall.net/Documentation_Index.html
  • Source repository: git
  • Community: mailing list
  • Features: ,
  • Similar Software

    Firewall Builder Firewall Builder is an open-source, GUI-based firewall management software. The built-in firewall policy compiler converts object-oriented firewall policy definitions into native firewall rules for a...

    Subscribe to Xmodulo List

    Do you want to receive posts about Linux applications and software recommended by Xmodulo List? Enter your email address below, and we will deliver our recommendations straight to your email box, for free. Delivery powered by Google Feedburner.

    Leave a comment

    Your email address will not be published. Required fields are marked *