{"category":{"categoryid":370,"name":"net-firewall","summary":"The net-firewall category contains network firewall software."},"packages":[{"categoryid":370,"description":"Arno's iptables firewall script","firstseen":"2010-05-04T00:54:45.661860","maintainer":"erkiferenc@gmail.com","maintainername":"Ferenc Erki","name":"arno-iptables-firewall","packageid":49939},{"categoryid":370,"description":"Set up, maintain, and inspect the tables of ARP rules in the Linux kernel","firstseen":"2010-05-04T00:54:45.661860","maintainer":"base-system@gentoo.org","maintainername":"Gentoo Base System","name":"arptables","packageid":53044},{"categoryid":370,"description":"BPF-based packet filtering framework","firstseen":"2025-06-12T21:13:31.658101","name":"bpfilter","packageid":78372},{"categoryid":370,"description":"Connection tracking userspace tools","firstseen":"2010-05-04T00:54:45.661860","maintainer":"netmon@gentoo.org","maintainername":"Gentoo network monitoring and analysis project","name":"conntrack-tools","packageid":45846,"summary":"The conntrack-tools are a set of free software userspace tools for Linux that allow system administrators interact with the Connection Tracking System, which is the module that provides stateful packet inspection for iptables. The conntrack-tools are the userspace daemon conntrackd and the command line interface conntrack."},{"categoryid":370,"description":"Controls Ethernet frame filtering on a Linux bridge, MAC NAT and brouting","firstseen":"2010-05-04T00:54:45.661860","maintainer":"base-system@gentoo.org","maintainername":"Gentoo Base System","name":"ebtables","packageid":55466},{"categoryid":370,"description":"Command line util for managing firewall rules","firstseen":"2012-08-08T14:37:29.613605","maintainer":"hydrapolic@gmail.com","maintainername":"Tomas Mozes","name":"ferm","packageid":59682},{"categoryid":370,"description":"iptables firewall generator","firstseen":"2010-05-04T00:54:45.661860","maintainer":"alonbl@gentoo.org","name":"firehol","packageid":46179},{"categoryid":370,"description":"Firewall daemon with D-Bus interface providing a dynamic firewall","firstseen":"2012-11-03T14:37:05.160014","maintainer":"virtualization@gentoo.org","maintainername":"Gentoo Virtualization Project","name":"firewalld","packageid":59963},{"categoryid":370,"description":"Firewall management GUI for iptables, PF, Cisco routers and more","firstseen":"2010-05-04T00:54:45.661860","maintainer":"proxy-maint@gentoo.org","maintainername":"Gentoo Proxy Maintainers Project","name":"fwbuilder","packageid":42010},{"categoryid":370,"description":"Single Packet Authorization and Port Knocking application","firstseen":"2014-04-27T13:37:38.655777","maintainer":"itumaykin+gentoo@gmail.com","maintainername":"Coacher","name":"fwknop","packageid":62142},{"categoryid":370,"description":"A nice iptables firewall script","firstseen":"2010-05-04T00:54:45.661860","name":"ipkungfu","packageid":43768},{"categoryid":370,"description":"IPset tool for iptables, successor to ippool","firstseen":"2010-05-04T00:54:45.661860","maintainer":"robbat2@gentoo.org","name":"ipset","packageid":41871},{"categoryid":370,"description":"Netflow iptables module","firstseen":"2012-10-14T13:36:16.849559","maintainer":"pinkbyte@gentoo.org","maintainername":"Sergey Popov","name":"ipt_netflow","packageid":59887},{"categoryid":370,"description":"Linux kernel (2.4+) firewall, NAT and packet mangling tools","firstseen":"2010-05-04T00:54:45.661860","maintainer":"base-system@gentoo.org","maintainername":"Gentoo Base System","name":"iptables","packageid":53887,"summary":"iptables is the userspace command line program used to set up, maintain, and inspect the tables of IPv4 packet filter rules in the Linux kernel. It's a part of packet filtering framework which allows the stateless and stateful packet filtering, all kinds of network address and port translation, and is a flexible and extensible infrastructure with multiple layers of API's for 3rd party extensions. The iptables package also includes ip6tables. ip6tables is used for configuring the IPv6 packet filter. Note that some extensions (e.g. imq and l7filter) are not included into official kernel sources so you have to patch the sources before installation."},{"categoryid":370,"description":"IPTables firewall setup script","firstseen":"2010-05-04T00:54:45.661860","maintainer":"tomek@lutel.pl","maintainername":"Tomek Lutelmowski","name":"lutelwall","packageid":52061,"summary":"LutelWall is high-level firewall configuration tool. It uses human-readable and easy to understand configuration to set up Netfilter in most secure way. Its flexibility allows firewall admins build from very simple, single-homed firewalls, to most complex ones - with multiple subnets, DMZ's and traffic redirections."},{"categoryid":370,"description":"Command line tool to create\/retrieve\/delete accounting objects in NetFilter","firstseen":"2012-09-01T14:40:12.123541","maintainer":"netmon@gentoo.org","maintainername":"Gentoo network monitoring and analysis project","name":"nfacct","packageid":59768},{"categoryid":370,"description":"Linux kernel firewall, NAT and packet mangling tools","firstseen":"2014-01-25T14:37:51.807581","maintainer":"nvinson234@gmail.com","maintainername":"Nicholas Vinson","name":"nftables","packageid":61863},{"categoryid":370,"description":"nftables load balancer","firstseen":"2020-05-01T01:08:41.548739","name":"nftlb","packageid":71068},{"categoryid":370,"description":"Port Scanning Attack Detection daemon","firstseen":"2010-05-04T00:54:45.661860","maintainer":"netmon@gentoo.org","maintainername":"Gentoo network monitoring and analysis project","name":"psad","packageid":46423},{"categoryid":370,"description":"RTSP conntrack module for Netfilter","firstseen":"2013-06-04T13:36:04.364300","maintainer":"pinkbyte@gentoo.org","maintainername":"Sergey Popov","name":"rtsp-conntrack","packageid":60810},{"categoryid":370,"description":"A high-level tool for configuring Netfilter","firstseen":"2010-05-04T00:54:45.661860","maintainer":"whissi@whissi.de","maintainername":"Thomas D. (Whissi)","name":"shorewall","packageid":42983,"summary":"The Shoreline Firewall, more commonly known as \"Shorewall\", is high-level tool for configuring Netfilter. You describe your firewall\/gateway requirements using entries in a set of configuration files. Shorewall reads those configuration files and with the help of the iptables, iptables-restore, ip and tc utilities, Shorewall configures Netfilter and the Linux networking subsystem to match your requirements. Shorewall can be used on a dedicated firewall system, a multi-function gateway\/router\/server or on a standalone GNU\/Linux system. Shorewall does not use Netfilter's ipchains compatibility mode and can thus take advantage of Netfilter's connection state tracking capabilities. Shorewall is not a daemon. Once Shorewall has configured the Linux networking subsystem, its job is complete and there is no \"Shorewall process\" left running in your system. The \/usr\/sbin\/shorewall program can be used at any time to monitor the Netfilter firewall."},{"categoryid":370,"description":"A program used to manage a netfilter firewall","firstseen":"2011-07-24T14:38:52.845929","maintainer":"nvinson234@gmail.com","maintainername":"Nicholas Vinson","name":"ufw","packageid":57659,"summary":"The Uncomplicated Firewall (ufw) is a frontend for iptables and is particularly well-suited for host-based firewalls. It provides a framework for managing netfilter, as well as an easy to use command-line interface for manipulating the firewall."},{"categoryid":370,"description":"iptables extensions not yet accepted in the main kernel","firstseen":"2010-05-04T00:54:45.661860","maintainer":"andreis.vinogradovs@gmail.com","maintainername":"Andreis Vinogradovs","name":"xtables-addons","packageid":45351,"summary":"Xtables-addons is the successor to patch-o-matic(-ng). Likewise, it contains extensions that were not, or are not yet, accepted in the main kernel\/iptables packages. Xtables-addons is different from patch-o-matic in that you do not have to patch or recompile the kernel, sometimes recompiling iptables is also not needed. But please see the INSTALL file for the minimum requirements of this package."}]}