dynfw Dynamic Firewall Tools, v1.0
http://www.gentoo.org/proj/en/dynfw.xml
Quote:
Firewalls all good and fun, but what do you do when you need to make rapid, complex changes to your netfilter-based firewall? Instead of feverishly hacking away at a complex master firewall script, use the dynfw Dynamic Firewall Tools. This collection of robust bash scripts have been designed to work with nearly any existing netfilter-based firewall configuration. By using these scripts, you'll be able to make near-immediate changes to your firewall configuration without risk of misconfiguration, resulting in vastly improved network security and responsiveness.
Script Description
install.sh the install script -- run this first
dynfw.sh the dynfw global support script -- used by all dynfw tools
ipdrop discard packets coming from a specific IP
ipblock discard as above, but send an TCP reset if applicable
tcplimit ratelimit new connections to a local TCP port
host-tcplimit ratelimit new connections from a specific host
user-outblock prevents a specific UID (user) from establishing outbound connections
http://www.ibiblio.org/gentoo/distfiles ... 0.1.tar.gz
also SEE:
http://www-106.ibm.com/developerworks/l ... /?n-l-4191