|File Search||Catalog||Content Search|
Interesting features: * Fast, due to use of iptables-restore for mass setting of rules * Rollback to previous firewall configuration on errors * Safety options to prevent mistakes in configuration (success confirmation prompt and/or scripted external verification) * Detailed error reporting * Lots of verification checks done before execution * Powerful yet clean configuration files (in Python and/or XML) * Designed for multiple hosts, firewalls, networks * Consistent firewalls for IPv4 and IPv6
Pyroman is inspired by Shorewall and FireHOL, but tries to improve upon them with respect to performance and ease of configuration.
Pyroman currently only configures iptables/netfilter firewalls, it does not include configuration utilities for setting up VPN or traffic shaping.
Pyroman "base" configuration files These are Pyroman example configuration files. Pyroman ships with multiple sets of configuration examples. This is the "base" example, which contains rules you are unlikely to do without - they setup the framework in which Pyroman operates by defining some basic services and such. Your distribution probably has the configuration examples installed in /usr/share more»
pyroman for Debian ------------------ When you have configured pyroman, edit /etc/defaults/pyroman and set the variable there to "y" to have it setup the firewall at boot time. (For systemd, use "systemctl enable pyroman.service") To test new firewall configurations, I recommend to make use of $ pyroman safe Which will rollback firewall changes if you fail to acknowledge them within 30 seconds, more»
This is an enhanced configuration example for Pyroman. Note that you need the "base" example, too! This example contains some example "real-world" host definitions.
PYROMAN(8) PYROMAN(8) NAME pyroman - a fire more»
pyroman (0.5.0~alpha1-3) unstable; urgency=low * Upload to unstable, to get more feedback on IPv6 more»
It was downloaded from http://pyroman.alioth.debian.org/ Copyright (C) 2006-2008 Erich Schubert <er more»