Vuurmuur has powerful monitoring features, which allow the administrator to look at the logs, connections and bandwidth usage in realtime. It makes use of IPTrafficVolume for keeping track of the traffic volume per interface.
The program is divided into three part. One element (the middle-end) converts humanly-readable rules, hosts, groups, networks, zones, interfaces and services into a iptables ruleset (or optional into a bash-script). The second element is a small daemon that converts the Netfilter logs to easy readable logs. The final element is an Ncurses-based user interface (the front-end) to manage the firewall.
* no iptables knowledge required
* human readable rules syntax
* traffic shaping
* Ncurses GUI, no X required.
* portforwarding is made very simple
* easy to setup in with NAT
* secure default policy
* entirely manageble through ssh and from the console (including from windows using PuTTY)
* scriptable for integration with other tools
* can produce a bash firewall script
* anti-spoofing features
* killing of unwanted connections
* supports working with Suricata & Snort_inline using QUEUE or NFQUEUE
* realtime logviewing
* realtime connection viewing
* filtering in logviewing and connection viewing
* basic traffic volume accounting
* searching through old logfiles
* audit logging: all changes are logged
* logging of new connections and bad packets
* traffic volume accounting
Installation and configuration of Vuurmuur:
Open the terminal and type following command to install vuurmuur
apt-get install libvuurmuur vuurmuur vuurmuur-conf
After you have successfully finished your Installation you might want to start configuring your firewall. There are some simple steps you have to go through:
define your interfaces
define zones, networks, hosts and groups (as you need)
set up your rules
To accomplish all this you will use Vuurmuurs gui tool sudo vuurmuur_conf (from command prompt). This tool can be used for much more than just configuration: You will be able to check the status of your firewall, monitor active connections, see the bandwidth currently used, keep an overview about your transfer volume and much more.
Check out some flash demo on vuurmuur : here