/[gentoo]/xml/htdocs/proj/en/dynfw.xml
Gentoo

Contents of /xml/htdocs/proj/en/dynfw.xml

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.3 - (show annotations) (download) (as text)
Fri Sep 17 11:13:25 2004 UTC (9 years, 9 months ago) by swift
Branch: MAIN
Changes since 1.2: +2 -3 lines
File MIME type: application/xml
DTD validity

1 <?xml version='1.0'?>
2
3
4 <!DOCTYPE guide SYSTEM "/dtd/guide.dtd">
5
6 <guide type="project" link="dynfw.xml">
7 <title>dynfw Dynamic Firewall Tools, v1.0</title>
8 <author title="Author"><mail link="drobbins@gentoo.org">Daniel Robbins</mail></author>
9 <abstract></abstract>
10 <version>1.0.1</version>
11 <date>09 Nov 2002</date>
12
13 <chapter>
14 <title>dynfw</title>
15
16 <section>
17 <title>Introduction</title>
18 <body>
19
20 <p>Firewalls all good and fun, but what do you do when you need to make rapid,
21 complex changes to your netfilter-based firewall? Instead of feverishly
22 hacking away at a complex master firewall script, use the dynfw Dynamic
23 Firewall Tools. This collection of robust bash scripts have been designed to
24 work with nearly any existing netfilter-based firewall configuration. By using
25 these scripts, you'll be able to make near-immediate changes to your firewall
26 configuration without risk of misconfiguration, resulting in vastly improved
27 network security and responsiveness. The dynfw firewall scripts were
28 originally featured in <uri
29 link="http://www-106.ibm.com/developerworks/linux/library/l-fw/?n-l-4191">this
30 IBM developerWorks article</uri>.</p>
31
32 <p>You can download the current version of dynfw here:
33 <uri>http://www.ibiblio.org/gentoo/distfiles/dynfw-1.0.1.tar.gz</uri>.</p>
34
35 <note>The dynfw Dynamic Firewall Tools are Copyright 2001-2003 Gentoo
36 Technologies, Inc. and distributed under the GNU General Public License. You
37 are encouraged to send any bug fixes or improvements to these tools to <mail
38 link="drobbins@gentoo.org">Daniel Robbins</mail> so that they can be rolled
39 into the official release.</note>
40
41 <p>The following scripts are included in <path>dynfw-1.0.1.tar.gz</path>:
42 </p>
43
44 <table>
45 <tr><th>Script</th><th>Description</th></tr>
46 <tr><ti><path>install.sh</path></ti><ti>the install script -- run this first</ti></tr>
47 <tr><ti><path>dynfw.sh</path></ti><ti>the dynfw global support script -- used by all dynfw tools</ti></tr>
48 <tr><ti><path>ipdrop</path></ti><ti>discard packets coming from a specific IP</ti></tr>
49 <tr><ti><path>ipblock</path></ti><ti>discard as above, but send an TCP reset if applicable</ti></tr>
50 <tr><ti><path>tcplimit</path></ti><ti>ratelimit new connections to a local TCP port</ti></tr>
51 <tr><ti><path>host-tcplimit</path></ti><ti>ratelimit new connections from a specific host</ti></tr>
52 <tr><ti><path>user-outblock</path></ti><ti>prevents a specific UID (user) from establishing outbound connections</ti></tr>
53 </table>
54
55 </body>
56 </section>
57 <section>
58 <title>Changelog</title>
59 <body>
60
61 <p><e>1.0.1</e>: sh-compatibility fixes; <c>==</c> changed to <c>=</c> (oops!)</p>
62 <p><e>1.0</e>: Initial release.</p>
63
64 </body>
65 </section>
66 </chapter>
67 </guide>

  ViewVC Help
Powered by ViewVC 1.1.20