|
About:
Knetfilter is a KDE frontend to iptables. It is used with Linux 2.4 to manage the functionality of netfilter. Knetfilter lets you set up most common firewall configurations, as well as perform more sophisticated management of a complex firewall. It is also possible to use an integrated interface to tcpdump and nmap.
Release focus: Major feature enhancements
Changes:
Added basic support per CBQ packet shaper with fw based classifier. Actually, it is possible just to shaper the bandwidth on network devices, so a lot more stuff about QoS support has to be developed inside of knetfilter, such as, for example, the possibility to delete a class or a qdisc, and a monitor to see which qdiscs, classes, and filters have been configured. They are all cool features, but a save function will not be developed for now.
Author:
genoni [contact developer]
RPM package:
http://tony.seacow.net/
Debian package:
http://packages.debian.org/unstable/net/knetfilter.html
Trove categories:
[change]
Dependencies:
[change]
No dependencies filed
|
|
» Rating:
8.03/10.00
(Rank N/A)
» Vitality: 0.04% (Rank 2402)
» Popularity: 4.94% (Rank 720)
 
(click to enlarge graphs)
Record hits: 69,345
URL hits: 59,418
Subscribers: 71
|
|
Branches
Releases
|
Version
|
Focus
|
Date
|
|
2.2.5
|
Major feature enhancements |
13-Mar-2002 12:55 |
|
2.2.4
|
Minor feature enhancements |
04-Feb-2002 11:19 |
|
2.2.3
|
Minor bugfixes |
17-Dec-2001 09:36 |
|
2.2.2
|
Minor feature enhancements |
14-Nov-2001 08:54 |
|
2.2.1
|
Major feature enhancements |
29-Oct-2001 11:07 |
|
2.2.0
|
Major feature enhancements |
10-Sep-2001 14:15 |
|
2.1.4
|
Minor feature enhancements |
27-Jul-2001 20:56 |
|
2.1.3
|
Major feature enhancements |
19-Jun-2001 13:48 |
|
2.1.2
|
Minor feature enhancements |
21-May-2001 08:42 |
|
2.1.1
|
Minor feature enhancements |
09-Apr-2001 21:22 |
Comments
[»]
RHEL4 build problem?
by CTAC - Dec 12th 2006 22:18:34
Have knetfilter-3.5.1 on CentOS4.4
unfortunately, when I make
# rpmbuild -tb knetfilter-3.5.1.tar.gz
it makes a lot of errors during creating result package and stops
Could you please fix this spec file?
[reply]
[top]
[»]
Problem installing
by Ed Welch - Sep 6th 2004 14:38:10
When I do ./configure I get the following error at the end:
checking for iptables... not found
configure: error: No iptables found.
yet iptables are there (version v1.2.8, in /sbin)
I am using Fedora core 1.
Do you know what the problem is?
[reply]
[top]
[»]
Re: Problem installing
by genoni - Dec 9th 2004 07:39:17
solved in 3.3.1 (my mistake, usualli iptables are
somewhere else)
> When I do ./configure I get the
> following error at the end:
> checking for iptables... not found
> configure: error: No iptables found.
> yet iptables are there (version v1.2.8,
> in /sbin)
> I am using Fedora core 1.
> Do you know what the problem is?
>
[reply]
[top]
[»]
Re: Problem installing
by genoni - Jan 25th 2005 02:59:58
the user who is compiling knetfilter has not iptables in his path
> When I do ./configure I get the
> following error at the end:
> checking for iptables... not found
> configure: error: No iptables found.
> yet iptables are there (version v1.2.8,
> in /sbin)
> I am using Fedora core 1.
> Do you know what the problem is?
>
[reply]
[top]
[»]
documentation...
by genoni - Jan 31st 2002 11:09:35
I do need help for documentation.
My first problem is that, not being english, I have difficoulties to write
some good documentation stuff.
My second problem is that as the coder, I am quite busy in updates and bug
fixes, and I have difficoulties, since I
am quite alone to find the time for user documentation.
I am interested about your first remark. I never saw knetfilter stop while
executing some command. It could take some time to list rules of something
else, but this is not a knetfilter bug, since it tries to revolve numeric
addresses.
Infact I do manage just numeric addresses, but they are resolved to give
the host names for the rules listing or similar. If your DNS cannot resolve
some address, knetfilter has to timeout to go to next rule and so on.
Should I avoid this, and give just numeric haddresses?
[reply]
[top]
[»]
Re: documentation...
by infirit - Jun 2nd 2002 07:33:18
Give users the option to resolve the ipnumbers to hostnames with some
commentary that it can be slow if the dns is busy / ofline. Maybe let the
user set the timeout ?
Greetz
> I do need help for documentation.
> My first problem is that, not being
> english, I have difficoulties to write
> some good documentation stuff.
> My second problem is that as the
> coder, I am quite busy in updates and
> bug fixes, and I have difficoulties,
> since I
> am quite alone to find the time for
> user documentation.
>
> I am interested about your first
> remark. I never saw knetfilter stop
> while executing some command. It could
> take some time to list rules of
> something else, but this is not a
> knetfilter bug, since it tries to
> revolve numeric addresses.
> Infact I do manage just numeric
> addresses, but they are resolved to give
> the host names for the rules listing or
> similar. If your DNS cannot resolve some
> address, knetfilter has to timeout to go
> to next rule and so on.
> Should I avoid this, and give just
> numeric haddresses?
>
[reply]
[top]
[»]
Re: documentation...
by genoni - Jul 8th 2002 04:58:07
Actually reverse resolution is not done anymore as default, and it is
optional, if users do want it and they know their DNS works for every ip
address.
This is the new default I will use for every monitor.
About inserting rules, you should use ip, not hostnames.
> Give users the option to resolve the
> ipnumbers to hostnames with some
> commentary that it can be slow if the
> dns is busy / ofline. Maybe let the user
> set the timeout ?
>
> Greetz
>
> % I do need help for documentation.
> % My first problem is that, not being
> % english, I have difficoulties to
> write
> % some good documentation stuff.
> % My second problem is that as the
> % coder, I am quite busy in updates and
> % bug fixes, and I have difficoulties,
> % since I
> % am quite alone to find the time for
> % user documentation.
> %
> % I am interested about your first
> % remark. I never saw knetfilter stop
> % while executing some command. It
> could
> % take some time to list rules of
> % something else, but this is not a
> % knetfilter bug, since it tries to
> % revolve numeric addresses.
> % Infact I do manage just numeric
> % addresses, but they are resolved to
> give
> % the host names for the rules listing
> or
> % similar. If your DNS cannot resolve
> some
> % address, knetfilter has to timeout to
> go
> % to next rule and so on.
> % Should I avoid this, and give just
> % numeric haddresses?
> %
>
>
>
[reply]
[top]
[»]
Nice proggy, though...
by Bitstream - Jan 28th 2002 08:18:36
1) it often seems to block, especially with the interface probing and the
iptables rules listing
2) heavily lacks documentation and (perhaps even more important) a rapid
online set of tips. If I am to remember the entire iptables man by heart, I
can't see much of a utility for a graphical frontend.
3) perhaps there could be a "wizzard" to load a pretty much
generic set of rules to be further customized. That could save users a lot
of hard time, trying to figure out how to get a working firewall without
blocking just about every single packet over the network. No, I'm not a
user-friendly freak, nor do I consider acceptable idiotic
autoconfigurations ala "low-medium-high-paranoid" that many
distros try to promote. What I intend is much like the firestarter's (a
gnome prog.) configuration. However the latter as a whole program has a lot
of inadequacies as it isnt as flexible nor as stable as knetfilter.
In any case, nice work!
--
The first thing a "thinking" computer will ask for is a dumb PC to make some calculations...
[reply]
[top]
[»]
Loocking for someone to implement traffic shaping.
by genoni - Apr 9th 2001 10:50:09
I am actually looking for someone to create a
window where it sould be possible to manage
traffic shaping using tradition traffic shaper.
This should not be so difficoult to implement, but
i would like to get some help about this.
[reply]
[top]
|
