Firewall Builder
Firewall Builder consists of a GUI and set of policy compilers for various firewall platforms. It helps users maintain a database of objects and allows policy editing using simple drag-and-drop operations. The GUI and policy compilers are completely independent, which provides for a consistent abstract model and the same GUI for different firewall platforms. It currently supports iptables, ipfilter, ipfw, OpenBSD pf, Cisco PIX and FWSM, and Cisco routers access lists.
| Tags | Firewalls Networking Internet Security |
|---|---|
| Licenses | GPL |
| Operating Systems | POSIX Linux BSD FreeBSD |
| Implementation | C C++ |
Recent releases
- 17 Jun 2009 17:53
Changes: This is a bugfix release that improves program stability. It is recommended for production use, and everyone is encouraged to upgrade. deb and RPM repositories are available; the "stable" repositories now host packages v3.0.5-b1076.
- 31 Mar 2009 07:44
Changes: This version includes numerous bugfixes as well as improvements in the built-in policy installer, SNMP discovery, support for IPv6 for all platforms, and policy compilers for iptables and PF. Generation of static routing commands for Cisco IOS and PIX has been implemented. This is a stable version to which all users are encouraged to upgrade.
- 09 Dec 2008 10:52
Changes: Problems with storing IPv6 addresses on FreeBSD have been fixed. GUI stability on operations of copying multiple objects between different data files has been improved. The parser for Cisco IOS configurations can now import configurations with a wider range of constructs. Support for non-ASCII characters in the RCS commit comments has been implemented.
- 25 Nov 2008 12:25
Changes: The built-in installer now uses scp (pscp.exe on Windows) to copy files to the firewall, which makes it work much faster. Optional data file compression was implemented. Support for pure mangle table rule sets for iptables was added. Significant improvements were made in the speed of the shadowing detection for all compilers (up to five times on large linear policies). There were numerous bugfixes and improvements in the GUI and policy compilers.
- 07 Oct 2008 21:30
Changes: This release includes numerous usability improvements and stability fixes. Among others, a fix is provided for the old annoying problem that caused the program to think that something in the data file had changed right after opening while there were no changes.
- All comments
Recent commentsRe: Distributed firewalls
you can intall and activate firewall policy if you use one of the install scripts available in the Contrib area on our sourceforge page. See FAQ 4.1
Distributed firewalls
Any chance you would implement the possibility to push one ruleset to a firewall module (maybe via ssh?) and restart the module and check status?
It would really give a kick to the application (which I really enjoy). And maybe support clustered firewalls?
Re: On FreeBSD
> Installation on a FreeBSD however
> requires some insight. Add some FAQs
> around this subject and fwbuilder would
> definitily get more focus on the FreeBSD
> platform.
we are working out last portability issues in the API library and the GUI. A section about building on FreeBSD will be added to the Requirements document at the time of the next release (1.0.2)
On FreeBSD
It's a delight to use the GUI. Very nice work.
Installation on a FreeBSD however requires some insight. Add some FAQs around this subject and fwbuilder would definitily get more focus on the FreeBSD platform.
Great product...
Just wanted to say this is a great product, and I hope to continue to get better. This has made configuring iptables rule-bases a dream.
Thanks again for all your work,
Michael Groves :)