Shorewall

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search

Shorewall
Shorewall logo.png
Developer(s)Thomas M. Eastep
Stable release
5.2.3 [1] / 15 February 2019; 4 months ago (2019-02-15)[2]
Written inPerl
Operating systemGNU
Available inEnglish
LicenseGPLv2+[3]
Websitewww.shorewall.net

Shorewall is an open source firewall tool for Linux that builds upon the Netfilter (iptables/ipchains) system built into the Linux kernel, making it easier to manage more complex configuration schemes by providing a higher level of abstraction for describing rules using text files.

Configuration[edit]

It is not a daemon since it does not run continuously, but rather configures rules in the kernel that allow and disallow traffic through the system. Shorewall is configured through a group of plain-text configuration files and does not have a graphical user interface, though a Webmin module is available separately. A monitoring utility packaged with Shorewall can be used to watch the status of the system as it operates and assist in testing.

Use[edit]

Shorewall is mainly used in network installations[citation needed] (as opposed to a personal computer firewall), since most of its strength lies in its ability to work with "zones"[citation needed], such as the DMZ or a 'net' zone. Each zone would then have different rules, making it easy to have for example relaxed rules on the company intranet, yet clamp down on traffic coming in from the Internet.

The plain-text configuration files are usually well-commented and easy to use, though Shorewall may be more difficult for new users to handle than other firewall systems with graphical front-ends.[citation needed]

Current version[edit]

The most recent stable version is 5.2.3. On 18 February 2019, primary developer Tom Eastep announced that he is retiring from the project, and 5.2.3 would be his final release[4]. Starting with version 4, Shorewall began using a Perl-based compiler frontend; previously it used a shell-based compiler frontend.[5] Support for IPv6 firewalling is included since version 4.2.4.[6]

See also[edit]

Free and open-source software logo (2009).svg Free software portal

References[edit]

  1. ^ "Shoreline Firewall (Shorewall)". Shorewall.net. Retrieved 18 February 2019.
  2. ^ "SHOREWALL 5.2.3" (TXT). Shorewall.net. Retrieved 18 February 2019.
  3. ^ "Shorewall Notices". Shorewall.net. Retrieved 22 November 2014.
  4. ^ "Shoreline Firewall (Shorewall) / [Shorewall-users] The end of the road..." sourceforge.net. Retrieved 18 February 2019.
  5. ^ "R E L E A S E 4 . 4 H I G H L I G H T S" (TXT). Shorewall.net. Retrieved 22 November 2014.
  6. ^ "Shorewall IPv6 Support". shorewall.org. Retrieved 18 February 2019.

External links[edit]