FlexFW is a compiler from high-level firewall definition language into iptables rules.

Its written in the python and provides ability to describe firewall configuration as set of permitted connections between groups of hosts on different sides of firewall.

Supported features:

  • NAT (SNAT and DNAT)
  • MASQUERADING
  • groups of hosts or networks
  • traffic accounting via iptables counters
  • ...

For more information please visit our SF project page

TODO

This project is used in some years in many places and in production state now, but for some historical reasons there are no good documentation about it, so i think the primary targets now are:

  • Write documentation
  • Write HOWTO and tutorial
  • Build project website
  • Cleanup init scripts
Яндекс Яндекс. Деньги Хочу такую же кнопку