3900. FireHOL
- FireHOL is a script producing stateful iptables firewalls. It can control any number of internal/external interfaces, offers control on any combination of routed traffic, sets up DMZ routers and servers and all kinds of NAT, provides strong protection (flooding, spoofing, etc), transparent caches, and more. Its goal is to be completely abstracted and powerful but also easy to use, audit, and understand.
FireHOL是一个生成完全状态IP表防火墙的脚本。它可以控制任意数量的internal/external接口,提供对任意路由流量的控制,安装DMZ路由器、服务器和各种NAT,提供强大的保护(泛洪,哄骗,等等),透明缓存,等等。它的目的是成为完全抽象和强大的,但是也易于使用、审计和理解。 |