[ Software |
Consulting |
Ramblings |
blog |
Photos |
Hacks |
Humor Archive |
Home Automation |
Chris Farris ]
|
Palisade
Palisade is a tool for maintaining and configuring the kernel level firewall
under Linux.
[ Design
| ScreenShots
| Download
| Documentation
| License
| Distribution
| Room17
]
|
This is yet another of my uncompleted projects.
Goals
The goal of the Palisade project is to build tools to enable non security
experts to build firewall policies and assist in maintaining the firewall.
To this extend Palisade is comprised of a JAVA based policy generator, and a
set of CGI scripts to notify the administrator of the status of the firewall.
Included will be detailed instructions on securing both these components.
Features
- Encrypted Communication from Firewall to administration client.
All CGI's and the Java applet use SSL to communicate to the server.
- Web Status Display
Indicating the number of packets passed, the number of packet rejected/accepted/denied.
- Java Policy Generator
This will allow the administrator to build policies remotely via their workstation
It will be platform independent (ie it will use JDK 1.1)
- Protocols will be abstracted into profiles.
This will prevent the user from having to research the different ports a
protocol uses. All profiles are kept in a single text file.
- Kernel independent.
The policies generated will be filter implementation independent. Conversion
tools are included to convert between policies and ipchains and ipfw.
- GPL License
What's New
| 6/21/99 | Started writing pages. -JCF |
Questions or comments should be sent to:
Chris Farris chris at room17 dot com
Copyright 2000, Room17 Enterprises, all rights reserved.
File Last modified on:
Saturday, 04-Sep-1999 17:10:34 EDT