Download List


FireHOL a simple yet powerful way to configure stateful iptables firewalls. It can be used for almost any purpose, including control of any number of internal/external/virtual interfaces, control of any combination of routed traffic, setting up DMZ routers and servers, and all kinds of NAT. It provides strong protection (flooding, spoofing, etc.), transparent caches, source MAC verification, blacklists, whitelists, and more. Its goal is to be completely abstracted and powerful but also easy to use, audit, and understand.


System requirement is not defined
Information regarding Project Releases and Project Resources. Note that the information here is a quote from page, and the downloads themselves may not be hosted on OSDN.

2008-07-31 13:24
R5 v1.273

标签: Minor bugfixes
This version was updated to parse the latest format of the IANA reservations page. Support for custom actions for services was added. This opens a way to allow actions that can be controlled externally without restarting the firewall. Several minor issues were fixed, providing better NAT support for all services, handling for external pager commands, kernel config parsing, a config wizard, etc.

2007-05-23 06:57
R5 v1.256

次要更新了最新的IANA的保留。阿检查 cron作业剧本提供了通知管理员时,IANA的保留的变化。
标签: Minor bugfixes
Minor updates were made for the latest IANA reservations. A cron job script was provided to notify the administrator when IANA reservations change.

2007-05-21 12:29
R5 v1.255

这主要是固定的维护版本的内核2.6.20 +和bash 3.2问题和增加对所有IP地址空间定义外部定义的支持。我们建议所有用户升级到这个版本。
标签: Minor feature enhancements
This maintenance release mainly fixed kernel 2.6.20+ and BASH 3.2 issues and added support for external definitions of all IP address space definitions. All users are advised to upgrade to this release.

2005-01-30 09:19
R5 v1.226

标签: Minor security fixes
This version fixes issues with the security of the created temporary files.

2005-01-25 07:04
R5 v1.224

标签: Major security fixes
This release fixed vulnerabilities where malicious local system users could use FireHOL's temporary files to overwrite arbitrary files on the system. All users are advised to update to this version. This release included new service definitions: ANYSTATELESS, TIMESTAMP, and DICT. A TRANSPARENT_PROXY helper was added. Support for knockd as an argument to the accept action was added.

Project Resources