On Tue, Apr 19, 2011 at 12:53 PM, Robert E. Blair <[log in to unmask]> wrote:
>
> There is a sourceforge project called firestarter which has a rather
> nice script that does lots of iptables config and provides a gui monitor
> of firewall activity.
You could also try APF:
http://www.rfxn.com/projects/advanced-policy-firewall/
(I've never used it so this isn't an experienced-based recommendation
but I've installed it on a test box to check out its rules and they
looked good.)
Shorewall's also an option that you could consider. It's another blind
recommendation though; I've never even seen its default rules...