Zorp firewall

Zorp is a proxy firewall suite developed by Balabit IT Security. Its core framework allows the administrator to fine-tune proxy decisions (with its built-in script language), and fully analyze embedded protocols (such as SSL with an embedded POP3 or HTTP protocol). The FTP, HTTP, FINGER, WHOIS, TELNET, and SSL protocols are fully supported with an application-level^[1] gateway.

Zorp aims for compliance with the Common Criteria/Application Level Firewall Protection Profile for Medium Robustness.

Zorp released under GNU/GPL ^[2] and commercial license too. The GPL version is completely usable and functional, however it lacks some of the more advanced functions available in the commercially available version only.

Supported protocols: Finger, Ftp, Http, Pop3, NNTP, IMAP4, RDP, RPC, SIP, SSL, SSH, Telnet, Whois, LDAP, RADIUS, TFtp, SQLNet NET8, Rsh. Plug is implemeted for proxing any L7 protocols.

Supported working modes: transparent and non-transparent working mode is supported as well.

Certification

2005: International Computer Security Association (ICSA) firewall certificate.^[3]

2009: Westcoast labs certificate.^[4]

See also

• Application layer firewall
• Comparison of firewalls
• Computer security
• Firewall
• Network security

References

1. http://www.linuxjournal.com/article/7296 Application Proxying with Zorp
2. http://www.balabit.com/network-security/zorp-gateway/gpl/ Zorp GPL
3. https://www.icsalabs.com/product/zorp-professional
4. http://www.westcoastlabs.com/checkmark/productList/checkmarkTestResult/?productID=386&techGroupID=43&from=v

External links

• Zorp homepage
• Zorp mailing list