netsecl.myfreeforum.org

admin · Site Admin Joined: 13 Apr 2006 Posts: 103

The stable firewall can be always found on:
ftp://mirrors.unixsol.org/netsecl/firewall
The current development firewall can be always found on:
ftp://mirrors.unixsol.org/netsecl/firewall/alpha

The current stable version is 1.3.2
No development version for now - check the new stable relaese above

admin · Site Admin Joined: 13 Apr 2006 Posts: 103

New release folks.
ftp://mirrors.unixsol.org/netsecl...ll/netsecl-firewall-1.3.2.tar.bz2
This release introduces an advanced firewall with snort inline, logging works and you can view all logs in
/var/log/snort_inline/
Scan tests prove that the snort-inline rules in the firewall are effective and a true stealth is achived. Please read REQUIRED.html in the archive and set the required options after installation. There is also a standard firewall without snort inline. I think the future of the firewall would be to translate all iptables rules in snort equivalents.

Enjoy :)

johnm · Joined: 14 Apr 2006 Posts: 53

Hi Iuri,

You actually got inline to work!!!!!!!!!

Now if I can just find time to test it. I'm still doing politics. I'm going to have to stay involved in this issue until the good guys can find a replacement for me.

Peace,

John

admin · Site Admin Joined: 13 Apr 2006 Posts: 103

Yeah I got it to work ;). I am know thinking of a way how to make setting variables in the firewall easy - a GUI.

johnm · Joined: 14 Apr 2006 Posts: 53

Hi iuri,

This release introduces an advanced firewall with snort inline, logging works and you can view all logs in
/var/log/snort_inline/
Scan tests prove that the snort-inline rules in the firewall are effective and a true stealth is achived. Please read REQUIRED.html in the archive and set the required options after installation. There is also a standard firewall without snort inline. I think the future of the firewall would be to translate all iptables rules in snort equivalents.

I had some problems with the install script. Here is the command line output.

bash-3.1# /root/netsecl/install.sh

Please type standard for standard firewall or advanced for a snort-inline enabled firewall. (standard/advanced) advanced
cp: cannot stat `gpl.txt': No such file or directory
cp: cannot stat `rc.advanced': No such file or directory
cp: cannot stat `perfmon.txt': No such file or directory
cp: cannot stat `snort_inline.conf': No such file or directory
cp: cannot stat `unicode.map': No such file or directory
cp: cannot stat `REQUIRED.html': No such file or directory

Please read REQUIRED.htmlbash-3.1#

The output listed above is from a clean install of netsecl.

Peace,

john

admin · Site Admin Joined: 13 Apr 2006 Posts: 103

Hi John,
All files from the archive should be in the same directory.
In your case all files from the archive should be in /root/netsecl/
Start the executable:
./root/netsecl/install.sh
Type advanced and press Enter that's all. I don't have this problem - I guess your files are not in the same dir/missing that's why cp complains.

johnm · Joined: 14 Apr 2006 Posts: 53

On Wed Aug 30, 2006 7:29 am Iuri Posted:

Hi John,

All files from the archive should be in the same directory.
In your case all files from the archive should be in /root/netsecl/
Start the executable:
./root/netsecl/install.sh
Type advanced and press Enter that's all. I don't have this problem - I guess your files are not in the same dir/missing that's why cp complains.

Hi Iuri,

I think I got it to work on one of my partitions. To get the install to work I had to copy netsecl-firewall-1.3.2 to my root partition. I also had to copy the files from netsecl-firewall-1.3.2 to the root partition. Then the command "/root/netsecl-firewall-1.3.2/install.sh" worked. On annother partition I tried the same command with only netsecl-firewall-1.3.2 in root and it didn't work.

The firewall seemed to perform well on some online tests. How did you test it to make sure inline was working?

Peace,

John

admin · Site Admin Joined: 13 Apr 2006 Posts: 103

Hi John,