fwgen - IPTables Firewall Generator

What is it?

fwgen is a Linux iptables firewall rule generator. It takes a high-level description of the firewall rules and geneates the necessary iptables commands to implement those rules.

How is it licenced?

fwgen is licenced under the GNU General Public Licence (GPL).

Where do I get it?

The latest version is available in source form here:

fwgen-1.0.1.tar.gz (GPG signature)

Debian packages are available in my PPA:

https://launchpad.net/~jrc61/+archive/ppa

Source and binary RPMs are available here:

Binary: fwgen-1.0.1-1.noarch.rpm
Source: fwgen-1.0.1-1.src.rpm

Older releases are available in the archive (source only).

How do I install it?

Do one of the following:

• Ubuntu and Debian users can add my PPA to their source.list and install the latest package with apt. fwgen requires obly perl so the package should install on any Debian-based distro.
• Redhat and Fedora users can install the RPM above.
• Downlaod the Debian package from my PPA and install manually with dpkg.
• Grab and extract the tarball and run fwgendirectly from the extracted tarball.

How do I use it?

Read the man page and the README file for details of how to write an input file for fwgen.

Generate your rules by running fwgen.

Run the generated shell script before bringing up your network interfaces, for example, by using the pre-up directive in /etc/network/interfaces on a Debian/Ubuntu system.

Documentation

See the README file and man page included in the fwgen package.