/[gentoo]/xml/htdocs/proj/en/dynfw.xml
Gentoo

Contents of /xml/htdocs/proj/en/dynfw.xml

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.1 - (show annotations) (download) (as text)
Sat Nov 9 18:52:14 2002 UTC (11 years, 8 months ago) by drobbins
Branch: MAIN
File MIME type: application/xml
boing

1 <?xml version='1.0'?>
2 <?xml-stylesheet href="/xsl/guide.xsl" type="text/xsl"?>
3
4 <!DOCTYPE guide SYSTEM "/dtd/guide.dtd">
5
6 <guide type="project" link="/projects/dynfw.html">
7 <title>dynfw Dynamic Firewall Tools, v1.0</title>
8 <author title="Author"><mail link="drobbins@gentoo.org">Daniel Robbins</mail></author>
9 <abstract></abstract>
10 <version>1.0.1</version>
11 <date>09 Nov 2002</date>
12
13 <chapter>
14 <title>dynfw</title>
15
16 <section>
17 <title>Introduction</title>
18 <body>
19
20 <p>Firewalls all good and fun, but what do you do when you need to make rapid,
21 complex changes to your netfilter-based firewall? Instead of feverishly
22 hacking away at a complex master firewall script, use the dynfw Dynamic
23 Firewall Tools. This collection of robust bash scripts have been designed to
24 work with nearly any existing netfilter-based firewall configuration. By using
25 these scripts, you'll be able to make near-immediate changes to your firewall
26 configuration without risk of misconfiguration, resulting in vastly improved
27 network security and responsiveness. The dynfw firewall scripts were
28 originally featured in <uri
29 link="http://www-106.ibm.com/developerworks/linux/library/l-fw/?n-l-4191">this
30 IBM developerWorks article</uri>.</p>
31
32 <p>You can download the current version of dynfw here:
33 <uri>http://www.ibiblio.org/gentoo/distfiles/dynfw-1.0.1.tar.gz</uri>.</p>
34
35 <note>The dynfw Dynamic Firewall Tools are Copyright 2001-2003 Gentoo
36 Technologies, Inc. and distributed under the GNU General Public License. You
37 are encouraged to send any bug fixes or improvements to these tools to <mail
38 link="drobbins@gentoo.org">Daniel Robbins</mail> so that they can be rolled
39 into the official release.</note>
40
41 <p>The following scripts are included in <path>dynfw-1.0.1.tar.gz</path>:
42 </p>
43 <p>
44 <table>
45 <tr><th>Script</th><th>Description</th></tr>
46 <tr><ti><path>install.sh</path></ti><ti>the install script -- run this first</ti></tr>
47 <tr><ti><path>dynfw.sh</path></ti><ti>the dynfw global support script -- used by all dynfw tools</ti></tr>
48 <tr><ti><path>ipdrop</path></ti><ti>discard packets coming from a specific IP</ti></tr>
49 <tr><ti><path>ipblock</path></ti><ti>discard as above, but send an TCP reset if applicable</ti></tr>
50 <tr><ti><path>tcplimit</path></ti><ti>ratelimit new connections to a local TCP port</ti></tr>
51 <tr><ti><path>host-tcplimit</path></ti><ti>ratelimit new connections from a specific host</ti></tr>
52 <tr><ti><path>user-outblock</path></ti><ti>prevents a specific UID (user) from establishing outbound connections</ti></tr>
53 </table>
54 </p>
55
56 </body>
57 </section>
58 <section>
59 <title>Changelog</title>
60 <body>
61
62 <p><e>1.0.1</e>: sh-compatibility fixes; <c>==</c> changed to <c>=</c> (oops!)</p>
63 <p><e>1.0</e>: Initial release.</p>
64
65 </body>
66 </section>
67 </chapter>
68 </guide>

  ViewVC Help
Powered by ViewVC 1.1.20