It can find optimal ways to implement certain rules depending on the chosen firewall platform, and enforces best practices in the firewall policy design.įirewall Builder isn’t the only tool of its type. The software not only translates high-level policy rules into target firewall configuration language, it also analyzes rules and finds common errors. The program can transfer a generated configuration to each firewall and activate it there, with various safeguards to help keep administrators from locking themselves out of a remote firewall. Administrators create objects that describe their hosts, networks, and services, then re-use the objects in policy and NAT rules on all the firewalls they manage. It supports the open source firewall platforms iptables, pf, ipfw, and ipfilter, as well as Cisco ASA (PIX) and IOS access lists, and makes all these very different firewalls appear the same to the administrator.įirewall Builder is intended for complex configurations, including those where multiple firewalls and routers are used, Kurland says. The result was Firewall Builder, a firewall configuration and management tool that lets administrators build firewall policies using a GUI, then push the configuration to firewall machines. Fortunately, he had lots of experience with commercial firewalls that he was able to apply to the problem. Back in 1999, Vadim Kurland realized he needed a better way to configure a Linux firewall than the then-typical process of issuing cryptic commands or editing a text-based configuration file full of esoteric settings.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |