Firewall Builder
Aug 20th 2009carltonUncategorized
I found a really cool firewall management tool today that mimics the GUI functionality of Checkpoint and can manage a host of different kinds of firewalls, all in the same user interface. I am currently testing with version 3.0.2 straight from the Ubuntu 9.04 repositories, managing my local workstation iptables configuration. When you add a new firewall to the management GUI, you can choose from an FWSM, IOS ACL, PF, ipfilter, ipfw, PIX or iptables and can specify the firewall platform as being Linux, FreeBSD, Cisco PIX, Cisco FWSM, OpenBSD, Linksys/Sveasoft, MAC OS X or Solaris.
I am going to test managing a set of IOS ACL configurations in the lab next to see how well this works. The error checking int he access lists seems to work well, telling me when I hide one rule with another less specific rule. I have not yet gotten around to troubleshooting the actual application of the iptables rules on my local machine, so I have been manually running the “compiled” rule base it creates, which is just a shell script. This has worked fine, but it will be nice to be able to just do a compile/verification+install with the GUI. My favorite feature taken from the CheckPoint GUI? Where Used. It is great to see free software like this that absolutely kicks booty.