Clock

Remote Support

Get Remote Support via Free TeamViewer Application.

Get Remote Support via Free TeamViewer Application.

Calender

September 2010
M T W T F S S
1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30

Support Firefox

Firefox 3.6.9

Login

Username

Password



Not a member yet?
Click here to register.

Forgotten your password?
Request a new one here.

Navigation

· Home
· Mission
· Code of Conduct
· Articles
· Downloads
· Forum
· Web Links
· News Categories
· Search

Forum Threads

Newest Threads
· Forum Software Updat...
· Support for Gigabit ...
· UPDATE: IPCop box ca...
· Hardware support for...
· IPCop FAQ v0.6.5 Rel...
Hottest Threads
No Threads created

Latest Articles

· First 100 .com domai...

Member Poll

Should IPCop users switch to IPFire due to the slow evolution pace of IPCop?

Yes
Yes
100% [6 Votes]

No
No
0% [0 Votes]

I don't care
I don't care
0% [0 Votes]

What is IPCop?
What is IPCop?
0% [0 Votes]

What is IPFire?
What is IPFire?
0% [0 Votes]

Votes: 6
You must login to vote.
Started: 07/01/2009 - 19:49

Polls Archive

World Visitors

World Visitors by Country

Map IP Address

IP


free counters

Credits

Thanks to KraKarjaK for our new Logo!

Virus Radar



Web Links: Firewall Distributions

SmoothWall Express Edition
The SmoothWall Open Source Project was set up to develop and maintain SmoothWall Express - a Free firewall that includes its own security-hardened GNU/Linux operating system and an easy-to-use web interface.

Developed by the SmoothWall Open Source Project team, with code contributions from the SmoothWall community at large, this latest version (based on Linux 2.6 Kernel) is a huge advance beyond Version 2.
Date Added: 09/16/2007 - 09:58 Visits: 258
IPCop
IPCop Linux is a complete Linux Distribution whose sole purpose is to protect the networks it is installed on. By implementing existing technology, outstanding new technology and secure programming practices IPCop is the Linux Distribution for those wanting to keep their computers/networks safe.

The IPCop Linux Team is dedicated to doing the very best job possible to keep your systems safe, as you can see on our site.

"The Bad Packets Stop Here!"
Date Added: 09/16/2007 - 10:00 Visits: 266
Endian Firewall Community
Endian Firewall Community is a "turn-key" linux security distribution that turns every system into a full featured security appliance. The software has been designed with "usability in mind" and is very easy to install, use and manage, without losing its flexibility.

The features include a stateful packet inspection firewall, application-level proxies for various protocols (HTTP, FTP, POP3, SMTP) with antivirus support, virus and spamfiltering for email traffic (POP and SMTP), content filtering of Web traffic and a "hassle free" VPN solution (based on OpenVPN). The main advantage of Endian Firewall is that it is a pure "Open Source" solution that is sponsored by Endian.
Date Added: 09/16/2007 - 10:02 Visits: 283
m0n0wall
m0n0wall is a project aimed at creating a complete, embedded firewall software package that, when used together with an embedded PC, provides all the important features of commercial firewall boxes (including ease of use) at a fraction of the price (free software).

m0n0wall is based on a bare-bones version of FreeBSD, along with a web server, PHP and a few other utilities. The entire system configuration is stored in one single XML text file to keep things transparent.

m0n0wall is probably the first UNIX system that has its boot-time configuration done with PHP, rather than the usual shell scripts, and that has the entire system configuration stored in XML format.
Date Added: 09/16/2007 - 10:03 Visits: 213
pfSense
pfSense is a open source firewall derived from the m0n0wall operating system platform with radically different goals such as using OpenBSD's ported Packet Filter, FreeBSD 6.1 ALTQ (HFSC) for excellent packet queueing and finally an integrated package management system for extending the environment with new features.
Date Added: 09/16/2007 - 10:08 Visits: 239
Untangle - Open Source Network Gateway
Open Source Network Gateway. Untangle is the free & open source alternative to Sonicwall. In addition to the basics (Firewall, VPN, IPS & routing), Untangle makes it easier to block spam, spyware, viruses, phishing, porn, gambling, MySpace, Facebook, IM, peer-2-peer & much, much more.

  • "Best Security Solution" - LinuxWorld 2007
  • Runs at the gateway... No clients to install!
  • Easy to use: Intuitive GUI, logging, reporting & automatic signature updates
  • Installs on standard Intel/AMD hardware
  • Lively forums & a great Wiki

Open Source & Free under the GPLv2.
Date Added: 01/02/2008 - 13:04 Visits: 364
IPFire - The Free Firewall for your Home or SOHO
IPFire is a Linux based firewall distribution with a lot of extras. Development base of the new release 2.1 was Linux from Scratch, a stable and flexible guide to build a Linux distribution. According to this the system was set up and tighten up with nice extras like Asterisk PBX, Samba, CUPS and many more...

So you can get anything out of IPFire you can imagine. Without any addons installed it is an ultra-fast firewall but can also be a full-featured home server. It's up to you what you want. Check it out...

IPFire is based on IPCop and Smoothwall.
Date Added: 03/20/2008 - 12:51 Visits: 371
Linux LiveCD Router Firewall
Speed-up your Internet connection ! Linux LiveCD Router allows you to share, firewall and optimize your broadband connection. You can use DSL, ADSL, Cable Modem, T1, Fixed IPs, Dial-Up, WiFi and more. Includes traffic priority settings for VoIP and other apps. Can avoid ISP traffic limiting.

Features:

  • Share and Firewall your broadband or dedicated Internet connection
  • Includes Firewall Shorewall and Masquerading (NAT)
  • Does not require any installation. It is a LiveCD, your computer simply boots straight from the CD (or flash disk). Does not require a hard disk
  • Supports DSL, Cablemodem, Fixed IP and Dial-Up
  • Traffic Control, QoS WonderShaper
  • DHCP Client and Server
  • Remote SSH administration
  • Secure Internet Access using OpenVPN
  • Can balance 2 internet connections (multi ISP)
  • Ideal for high speed (5 mbps+) ADSL lines - since most WAN ports on integrated routers do not support 5 mbps+ speeds
  • Use standard and low cost computer, networking and wifi hardware
  • Linux Software compatible with Windows and Mac Networks
  • Boot from USB flash
Date Added: 03/20/2008 - 13:09 Visits: 318
ZeroShell - Net Services
Zeroshell is a small Linux distribution for servers and embedded devices aimed at providing the main network services a LAN requires. It is available in the form of Live CD or Compact Flash image and you can configure and administer it using your web browser. The main features are listed below:

  • RADIUS server for providing secure authentication and automatic management of the encryption keys to the Wireless 802.11b, 802.11g and 802.11a networks supporting the 802.1x protocol in the EAP-TLS, EAP-TTLS and PEAP form or the less secure authentication of the client MAC Address; WPA with TKIP and WPA2 with CCMP (802.11i complaint) are supported too; the RADIUS server may also, depending on the username, group or MAC Address of the supplicant, allow the access on a preset 802.1Q VLAN;

  • Captive Portal to support the web login on wireless and wired networks. Zeroshell acts as gateway for the networks on which the Captive Portal is active and on which the IP addresses (usually belonging to private subnets) are dynamically assigned by the DHCP. A client that accesses this private network must authenticate itself through a web browser using Kerberos 5 username and password before the Zeroshell's firewall allows it to access the public LAN. The Captive Portal gateways are often used to provide authenticated Internet access in the HotSpots in alternative to the 802.1X authentication protocol too complicated to configure for the users. Zeroshell implements the functionality of Captive Portal in native way, without using other specific software as NoCat or Chillispot;

  • QoS (Quality of Service) management and traffic shaping to control traffic over a congested network. You will be able to guarantee the minimum bandwidth, limit the max bandwidth and assign a priority to a traffic class (useful in latency-sensitive network applications like VoIP). The previous tuning can be applied on Ethernet Interfaces, VPNs, bridges and VPN bondings. It is possible to classify the traffic by using the Layer 7 filters that allow the Deep Packet Inspection (DPI) which can be useful to shape VoIP and P2P applications;

  • HTTP Proxy server which is able to block the web pages containing virus. This feature is implemented using the ClamAV antivirus and HAVP proxy server. The proxy server works in transparent proxy mode, in which, you don't need to configure the web browsers of the users to use it, but the http requests will be automatically redirected to the proxy;

  • Wireless Access Point mode with Multiple SSID and VLAN support by using WiFi network cards based on the Atheros chipsets. In other words, a Zeroshell box with one of such WiFi cards could become a IEEE 802.11a/b/g Access Point providing reliable authentication and dynamic keys exchange by 802.1X and WPA protocols. Of course, the authentication takes place using EAP-TLS and PEAP over the integrated RADIUS server;

  • Host-to-lan VPN with L2TP/IPsec in which L2TP (Layer 2 Tunneling Protocol) authenticated with Kerberos v5 username and password is encapsulated within IPsec authenticated with IKE that uses X.509 certificates;

  • Lan-to-lan VPN with encapsulation of Ethernet datagrams in SSL/TLS tunnel, with support for 802.1Q VLAN and configurable in bonding for load balancing (band increase) or fault tolerance (reliability increase);

  • Router with static and dynamic routes (RIPv2 with MD5 or plain text authentication and Split Horizon and Poisoned Reverse algorithms);

  • 802.1d bridge with Spanning Tree protocol to avoid loops even in the presence of redundant paths;

  • 802.1Q Virtual LAN (tagged VLAN);

  • Firewall Packet Filter and Stateful Packet Inspection (SPI) with filters applicable in both routing and bridging on all type of interfaces including VPN and VLAN;

  • It is possible to reject or shape P2P File Sharing traffic by using IPP2P iptables module in the Firewall and QoS Classifier;

  • NAT to use private class LAN addresses hidden on the WAN with public addresses;

  • TCP/UDP port forwarding (PAT) to create Virtual Servers. This means that real server cluster will be seen with only one IP address (the IP of the virtual server) and each request will be distributed with Round Robin algorithm to the real servers;

  • Multizone DNS server with automatic management of the Reverse Resolution in-addr.arpa;

  • Multi subnet DHCP server with the possibility to fix IP depending on client's MAC address;

  • PPPoE client for connection to the WAN via ADSL, DSL and cable lines (requires a suitable MODEM);

  • Dynamic DNS client used to easily reach the host on WAN even when the IP is dynamic;

  • NTP (Network Time Protocol) client and server for keeping host clocks synchronized;

  • Syslog server for receiving and cataloging the system logs produced by the remote hosts including Unix systems, routers, switches, WI-FI access points, network printers and others compatible with the syslog protocol;

  • Kerberos 5 authentication using an integrated KDC and cross-authentication between realms;

  • LDAP, NIS and RADIUS authorization;

  • X509 certification authority for issuing and managing electronic certificates;

  • Unix and Windows Active Directory interoperability using LDAP and Kerberos 5 cross realm authentication.
Date Added: 08/04/2008 - 23:48 Visits: 396
RaqCop
RaqCop.com was founded in October 2007 to utilize the super stable IPCop Firewall on Sun Cobalt Raq / Symantec VelociRaptor Hardware. IPCop is by far the worlds best Linux firewall distribution and paired with a Sun Cobalt Raq or VelociRaptor, it makes a perfect inexpensive custom router / firewall.
Date Added: 09/09/2008 - 13:20 Visits: 256
FREESCO
FREESCO was developed in the open source tradition as an alternative to routing products offered by Cisco, 3-Com, Accend, Nortel etc. While all of these companies offer products that are well made, the overhead and overall costs can be expensive.

FREESCO is open source, stable, inexpensive, easy to use, extremely versatile and flexible... and best of all, FREESCO is FREE.

FREESCO is based on the Linux operating system. And incorporates many of the features of other Linux distributions into software that fits onto a single 1.44 meg floppy diskette. With FREESCO, you can configure:

  • simple bridge with up to 10 Ethernet segments
  • a router with up to 10 Ethernet segments
  • a dialup line router
  • a leased line router
  • an Ethernet router
  • a dial-in server with up to 10 modems (with multiport modems).
  • a time server
  • a dhcp server
  • a http server
  • a ftp server
  • a dns server
  • a ssh server
  • a print server (requires TCP/IP printing client software)

FREESCO also incorporates firewalling and NAT, which are resident within the Linux kernel, to help protect you and your network. All of these features can be used in conjunction with each other or individually.
Date Added: 09/15/2008 - 12:14 Visits: 209
floppyfw
floppyfw is a router with the advanced firewall-capabilities in Linux that fits on one single floppy disc.

Features:

  • Access lists, IP-masquerading (Network Address Translation), connection tracked packet filtering and (quite) advanced routing. Package for traffic shaping is also available.
  • Requires only a 386sx or better with two network interface cards, a 1.44MB floppy drive and 12MByte of RAM ( for less than 12M and no FPU, use the 1.0 series. )
  • Very simple packaging system. Is used for editors, PPP, VPN, traffic shaping and whatever comes up. (now this is looking even more like LRP (may it rest in peace) but floppyfw is not a fork.)
  • Logging through klogd/syslogd, both local and remote.
  • Serial support for console over serial port.
  • DHCP server and DNS cache for internal networks.

It will get more features, but only if it is possible to cram it into the one, single diskette. More than one floppy is bloatware...
Date Added: 09/15/2008 - 12:33 Visits: 118
Render time: 0.06 seconds
368,094 unique visits