/[gentoo]/xml/htdocs/proj/en/dynfw.xml
Gentoo

Contents of /xml/htdocs/proj/en/dynfw.xml

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.1 - (hide annotations) (download) (as text)
Sat Nov 9 18:52:14 2002 UTC (12 years, 1 month ago) by drobbins
Branch: MAIN
File MIME type: application/xml
boing

1 drobbins 1.1 <?xml version='1.0'?>
2     <?xml-stylesheet href="/xsl/guide.xsl" type="text/xsl"?>
3    
4     <!DOCTYPE guide SYSTEM "/dtd/guide.dtd">
5    
6     <guide type="project" link="/projects/dynfw.html">
7     <title>dynfw Dynamic Firewall Tools, v1.0</title>
8     <author title="Author"><mail link="drobbins@gentoo.org">Daniel Robbins</mail></author>
9     <abstract></abstract>
10     <version>1.0.1</version>
11     <date>09 Nov 2002</date>
12    
13     <chapter>
14     <title>dynfw</title>
15    
16     <section>
17     <title>Introduction</title>
18     <body>
19    
20     <p>Firewalls all good and fun, but what do you do when you need to make rapid,
21     complex changes to your netfilter-based firewall? Instead of feverishly
22     hacking away at a complex master firewall script, use the dynfw Dynamic
23     Firewall Tools. This collection of robust bash scripts have been designed to
24     work with nearly any existing netfilter-based firewall configuration. By using
25     these scripts, you'll be able to make near-immediate changes to your firewall
26     configuration without risk of misconfiguration, resulting in vastly improved
27     network security and responsiveness. The dynfw firewall scripts were
28     originally featured in <uri
29     link="http://www-106.ibm.com/developerworks/linux/library/l-fw/?n-l-4191">this
30     IBM developerWorks article</uri>.</p>
31    
32     <p>You can download the current version of dynfw here:
33     <uri>http://www.ibiblio.org/gentoo/distfiles/dynfw-1.0.1.tar.gz</uri>.</p>
34    
35     <note>The dynfw Dynamic Firewall Tools are Copyright 2001-2003 Gentoo
36     Technologies, Inc. and distributed under the GNU General Public License. You
37     are encouraged to send any bug fixes or improvements to these tools to <mail
38     link="drobbins@gentoo.org">Daniel Robbins</mail> so that they can be rolled
39     into the official release.</note>
40    
41     <p>The following scripts are included in <path>dynfw-1.0.1.tar.gz</path>:
42     </p>
43     <p>
44     <table>
45     <tr><th>Script</th><th>Description</th></tr>
46     <tr><ti><path>install.sh</path></ti><ti>the install script -- run this first</ti></tr>
47     <tr><ti><path>dynfw.sh</path></ti><ti>the dynfw global support script -- used by all dynfw tools</ti></tr>
48     <tr><ti><path>ipdrop</path></ti><ti>discard packets coming from a specific IP</ti></tr>
49     <tr><ti><path>ipblock</path></ti><ti>discard as above, but send an TCP reset if applicable</ti></tr>
50     <tr><ti><path>tcplimit</path></ti><ti>ratelimit new connections to a local TCP port</ti></tr>
51     <tr><ti><path>host-tcplimit</path></ti><ti>ratelimit new connections from a specific host</ti></tr>
52     <tr><ti><path>user-outblock</path></ti><ti>prevents a specific UID (user) from establishing outbound connections</ti></tr>
53     </table>
54     </p>
55    
56     </body>
57     </section>
58     <section>
59     <title>Changelog</title>
60     <body>
61    
62     <p><e>1.0.1</e>: sh-compatibility fixes; <c>==</c> changed to <c>=</c> (oops!)</p>
63     <p><e>1.0</e>: Initial release.</p>
64    
65     </body>
66     </section>
67     </chapter>
68     </guide>

  ViewVC Help
Powered by ViewVC 1.1.20