vpn
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 85
vpn
vpn is a SuperKaramba theme that puts a VPN text on your desktop: in green if the VPN is up, red if it isnt. more>>
vpn is a SuperKaramba theme that puts a VPN text on your desktop: in green if the VPN is up, red if it isnt.
Then, clicking the text will start/stop the VPN and change the colour accordingly.
You can change the commands to start/stop the VPN by editing a couple of variables in the python code.
<<lessThen, clicking the text will start/stop the VPN and change the colour accordingly.
You can change the commands to start/stop the VPN by editing a couple of variables in the python code.
Download (0.002MB)
Added: 2006-06-20 License: GPL (GNU General Public License) Price:
1240 downloads
Other version of vpn
VPN HOWTO 2.0
VPN HOWTO is a document that describes how to set up a Virtual Private Network with Linux. more>>
VPN HOWTO is a document that describes how to set up a Virtual Private Network with Linux.
Main features:
- Section 1: Introduction
- Section 2: Theory
- Basic VPN theory. What is a VPN, and how does it work. Read this if you are entirely new to VPN.
- Section 3: Server
- This section describes how a VPN server is set up.
- Section 4: Client
- This section describes how a VPN client is set up.
- Section 5: Implementation
- A step by step implementation of a sample VPN setup.
- Section 6: Addenda
- Other bits and pieces of info that you might find helpful.
<<lessMain features:
- Section 1: Introduction
- Section 2: Theory
- Basic VPN theory. What is a VPN, and how does it work. Read this if you are entirely new to VPN.
- Section 3: Server
- This section describes how a VPN server is set up.
- Section 4: Client
- This section describes how a VPN client is set up.
- Section 5: Implementation
- A step by step implementation of a sample VPN setup.
- Section 6: Addenda
- Other bits and pieces of info that you might find helpful.
Download (MB)
Added: 2006-10-11 License: (FDL) GNU Free Documentation License Price:
1127 downloads
KVpnc 0.8.9
KVpnc is a KDE frontend for various vpn clients. more>>
KVpnc is a KDE frontend for various vpn clients. KVpnc project supports Cisco VPN (vpnc) and IPSec (FreeS/WAN, racoon).
vpnc is a replacement for the cisco VPN client and its used as client for the cisco3000 VPN Concentrator, FreeS/WAN (OpenS/WAN) is a IPSec client for Linux 2.4.x and racoon is a IPSec client for Linux 2.6.x and *BSD. It supports also PPTP (pptpclient) and OpenVPN.
You need vpnc >= 0.2-rm+zomb-pre9.
Note: translators still welcome. Kvpnc is currently translated to Bulgarian, Chinese, Dutch, German, Hungary, Italian, French, Portuguese Brazilian, Polish, Slovak and Spanish.
Main features:
- Easy to use KDE gui
- Docking in kicker
- Localized GUI:
Bulgarian
Chinese
Dutch
French
German
Hungarian
Italian
Slovak
Polish
Portuguese Brazilian
Spanish
- VPN connection to Cisco concentrator
- VPN connection to VPN servers by using IPsec
- FreeS/WAN (Linux 2.4.x) support
- racoon (Linux 2.6.x/BSD) support
- PPTP support (pptpclient)
- OpenVPN support
- Multiple profiles
- Preshared secret support
- X509 certificate support
- Cisco PCF file import
- PKCS12 certificate import
- Ping test
- Automaticlly setting of routes and firewall rules (iptables) (currently: freeswan/racoon)
- Automaticlly network device detection (can be overridden)
- Log file writing
- DCOP interface
- user notification for sucessful connect/disconnect
- NAT-T support (racoon/OpenVPN/vpnc)
<<lessvpnc is a replacement for the cisco VPN client and its used as client for the cisco3000 VPN Concentrator, FreeS/WAN (OpenS/WAN) is a IPSec client for Linux 2.4.x and racoon is a IPSec client for Linux 2.6.x and *BSD. It supports also PPTP (pptpclient) and OpenVPN.
You need vpnc >= 0.2-rm+zomb-pre9.
Note: translators still welcome. Kvpnc is currently translated to Bulgarian, Chinese, Dutch, German, Hungary, Italian, French, Portuguese Brazilian, Polish, Slovak and Spanish.
Main features:
- Easy to use KDE gui
- Docking in kicker
- Localized GUI:
Bulgarian
Chinese
Dutch
French
German
Hungarian
Italian
Slovak
Polish
Portuguese Brazilian
Spanish
- VPN connection to Cisco concentrator
- VPN connection to VPN servers by using IPsec
- FreeS/WAN (Linux 2.4.x) support
- racoon (Linux 2.6.x/BSD) support
- PPTP support (pptpclient)
- OpenVPN support
- Multiple profiles
- Preshared secret support
- X509 certificate support
- Cisco PCF file import
- PKCS12 certificate import
- Ping test
- Automaticlly setting of routes and firewall rules (iptables) (currently: freeswan/racoon)
- Automaticlly network device detection (can be overridden)
- Log file writing
- DCOP interface
- user notification for sucessful connect/disconnect
- NAT-T support (racoon/OpenVPN/vpnc)
Download (1.9MB)
Added: 2007-05-02 License: GPL (GNU General Public License) Price:
922 downloads
vpn-shaper 0.1
vpn-shaper provides a dynamic traffic shaper for vpn, poptop, and similar programs, using iproute2. more>>
vpn-shaper provides a dynamic traffic shaper for vpn, poptop, and similar programs, using iproute2.
vpn-shaper is a dynamic traffic shaper for openvpn, poptop, and similar programs, using iproute2. It allows shaping of traffic between many users conected to one server, and it supports different prioritiy schemes for different users and different types of traffic.
Trafic shaping uses the HTB qdisc. Prioritization uses l7-filter and ipp2p and some of the patch-o-matic extensions.
Classification of trafic in HTB classes is done by using the IPMARC patch-o-matic extension.
<<lessvpn-shaper is a dynamic traffic shaper for openvpn, poptop, and similar programs, using iproute2. It allows shaping of traffic between many users conected to one server, and it supports different prioritiy schemes for different users and different types of traffic.
Trafic shaping uses the HTB qdisc. Prioritization uses l7-filter and ipp2p and some of the patch-o-matic extensions.
Classification of trafic in HTB classes is done by using the IPMARC patch-o-matic extension.
Download (0.005MB)
Added: 2007-04-26 License: GPL (GNU General Public License) Price:
920 downloads
amrita VPN 0.99
Amrita VPN is an easy-to-use open source VPN solution that runs on the GNU/Linux platform. more>>
Amrita VPN is an easy-to-use open source VPN solution that runs on the GNU/Linux platform. The implementation is fully in userspace and requires no kernel patches or enhancements. It uses openssl library for strong encryption and authentication through SSLv3.
Amrita VPN IS used to connect two private networks through a public network such as the Internet. It requires only one end to have a direct Internet connection preferably with a permanent public IP address. The other end could be connected to the Internet via a masquerading router.
tar xvfz amvpn-0.99.tar.gz
- cd amvpn-0.99
- ./configure
- make
- make install
Root privilege is required to install and run AmritaVPN. You would need a root login shell to succesfully run make install. If youre logged in as root, then of course you already have a root login shell.Otherwise you must do: su - instead of simply su at command prompt.
Enhancements:
- Added keepalive message option.
- Added basic flow control logic in the relay loop - Prevents amvpn from becoming CPU-bound when theres a break/congestion in the outbound link.
<<lessAmrita VPN IS used to connect two private networks through a public network such as the Internet. It requires only one end to have a direct Internet connection preferably with a permanent public IP address. The other end could be connected to the Internet via a masquerading router.
tar xvfz amvpn-0.99.tar.gz
- cd amvpn-0.99
- ./configure
- make
- make install
Root privilege is required to install and run AmritaVPN. You would need a root login shell to succesfully run make install. If youre logged in as root, then of course you already have a root login shell.Otherwise you must do: su - instead of simply su at command prompt.
Enhancements:
- Added keepalive message option.
- Added basic flow control logic in the relay loop - Prevents amvpn from becoming CPU-bound when theres a break/congestion in the outbound link.
Download (0.082MB)
Added: 2006-06-27 License: GPL (GNU General Public License) Price:
708 downloads
OpenVPN 2.0.9
OpenVPN is an easy-to-use, robust, and highly configurable VPN. more>>
OpenVPN is a full-featured SSL VPN solution which can accomodate a wide range of configurations, including remote access, site-to-site VPNs, WiFi security, and enterprise-scale remote access solutions with load balancing, failover, and fine-grained access-controls (articles) (examples) (security overview) (non-english languages).
OpenVPN implements OSI layer 2 or 3 secure network extension using the industry standard SSL/TLS protocol, supports flexible client authentication methods based on certificates, smart cards, and/or 2-factor authentication, and allows user or group-specific access control policies using firewall rules applied to the VPN virtual interface. OpenVPN is not a web proxy and does not operate through a web browser.
For a good conceptual introduction to OpenVPN, see the program notes for James Yonans talk at Linux Fest Northwest 2004 -- Understanding the User-Space VPN: History, Conceptual Foundations, and Practical Usage. See also OpenVPN and the SSL VPN Revolution by Charlie Hosner.
OpenVPN is an Open Source project and is licensed under the GPL. Commercial licenses are also available for firms who would like to redistribute OpenVPN with their own proprietary applications. Contact info@openvpn.net for more information.
Main features:
- tunnel any IP subnetwork or virtual ethernet adapter over a single UDP or TCP port,
- configure a scalable, load-balanced VPN server farm using one or more machines which can handle thousands of dynamic connections from incoming VPN clients,
- use all of the encryption, authentication, and certification features of the OpenSSL library to protect your private network traffic as it transits the internet,
- use any cipher, key size, or HMAC digest (for datagram integrity checking) supported by the OpenSSL library,
- choose between static-key based conventional encryption or certificate-based public key encryption,
- use static, pre-shared keys or TLS-based dynamic key exchange,
- use real-time adaptive link compression and traffic-shaping to manage link bandwidth utilization,
- tunnel networks whose public endpoints are dynamic such as DHCP or dial-in clients,
- tunnel networks through connection-oriented stateful firewalls without having to use explicit firewall rules,
- tunnel networks over NAT,
- create secure ethernet bridges using virtual tap devices, and
- control OpenVPN using a GUI on Windows or Mac OS X.
<<lessOpenVPN implements OSI layer 2 or 3 secure network extension using the industry standard SSL/TLS protocol, supports flexible client authentication methods based on certificates, smart cards, and/or 2-factor authentication, and allows user or group-specific access control policies using firewall rules applied to the VPN virtual interface. OpenVPN is not a web proxy and does not operate through a web browser.
For a good conceptual introduction to OpenVPN, see the program notes for James Yonans talk at Linux Fest Northwest 2004 -- Understanding the User-Space VPN: History, Conceptual Foundations, and Practical Usage. See also OpenVPN and the SSL VPN Revolution by Charlie Hosner.
OpenVPN is an Open Source project and is licensed under the GPL. Commercial licenses are also available for firms who would like to redistribute OpenVPN with their own proprietary applications. Contact info@openvpn.net for more information.
Main features:
- tunnel any IP subnetwork or virtual ethernet adapter over a single UDP or TCP port,
- configure a scalable, load-balanced VPN server farm using one or more machines which can handle thousands of dynamic connections from incoming VPN clients,
- use all of the encryption, authentication, and certification features of the OpenSSL library to protect your private network traffic as it transits the internet,
- use any cipher, key size, or HMAC digest (for datagram integrity checking) supported by the OpenSSL library,
- choose between static-key based conventional encryption or certificate-based public key encryption,
- use static, pre-shared keys or TLS-based dynamic key exchange,
- use real-time adaptive link compression and traffic-shaping to manage link bandwidth utilization,
- tunnel networks whose public endpoints are dynamic such as DHCP or dial-in clients,
- tunnel networks through connection-oriented stateful firewalls without having to use explicit firewall rules,
- tunnel networks over NAT,
- create secure ethernet bridges using virtual tap devices, and
- control OpenVPN using a GUI on Windows or Mac OS X.
Download (0.64MB)
Added: 2007-06-02 License: GPL (GNU General Public License) Price:
901 downloads
Other version of OpenVPN
James Yonan - OpenVPN is an easy-to-use, robust, and highly configurable VPN (Virtual Private Network) daemon. OpenVPN. OpenVPN is a full-featuredLicense:GPL (GNU General Public License)
VPNmonitor 1.2
VPNmonitor is a free Java tool to observe network traffic. more>>
VPNmonitor is a free Java tool to observe network traffic. Network administrators can use it to monitor VPN (PPTP and IPSec) and SSL (HTTPS) connectivity of wireline/wireless networks.
If you are using Linux this way you will run VPNmonitor:
1. Install libpcap 0.7.2 or above from http://www.tcpdump.org/
2. Copy Jpcap libraries to the jre directories:
cp net.sourceforge.jpcap-0.01.13.jar /jre/lib/ext
cp libjpcap.so /jre/lib/i386
3. su to root
4. Run VPNmonitor
java -jar VPNmonitor.jar
<<lessIf you are using Linux this way you will run VPNmonitor:
1. Install libpcap 0.7.2 or above from http://www.tcpdump.org/
2. Copy Jpcap libraries to the jre directories:
cp net.sourceforge.jpcap-0.01.13.jar /jre/lib/ext
cp libjpcap.so /jre/lib/i386
3. su to root
4. Run VPNmonitor
java -jar VPNmonitor.jar
Download (0.67MB)
Added: 2006-06-27 License: GPL (GNU General Public License) Price:
1219 downloads
Securepoint Firewall & VPN Server 4.5
One of the most important requirements in the realisation of networks. more>> One of the most important requirements in the realisation of networks is the security. When internal and external computing-systems are connected with each other it has to be secured that no unauthorised person has access to them and the system is only allowing access to only authorised personnel. The Securepoint Professional Firewall & VPN Server (Information brochure) is suitable for companies with between 5 to 2.000 workstations, supports up to 16 network zones to protect company departments against each other and contains an integral VPN Server based on PPTP and IPSec.
Securepoint comes with an own secured Linux operating system based on RedHat. Securepoint has a client/server architecture. The administration client (Securepoint Security Manager) works under Windows and Linux (with wine).
Securepoint is an excellent and cost-effective choice for companies which wish to secure their Internet access, to protect the departments against each other and build up VPN nets between company and external locations.
All products are compatible with other softwaresystems like virusscanners, Load-balancing Systems...
Secured and harded RedHat Linux
Support of kernel 2.4.X
Support journaling filesystem
Support RAID
Network Interfaces with 10/100/1000 Mbit
16 Network interfaces (External, Internal, DMZ/SSN)
Compatible to other Linux software<<less
Download (212.04MB)
Added: 2009-03-31 License: Freeware Price: Free
278 downloads
Webmin OpenVpn Admin Module 2.5
Webmin OpenVpm Admin Module allows you to create static or CA-based VPNs through a Web interface. more>>
Webmin OpenVpm Admin Module allows you to create static or CA-based VPNs through a Web interface.
Webmin is a valid web-based instrument for Linux/Unix system administrator. OpenVPN allows to create and manage VPN supplying wide possibilities of configuration.
Their union, with also the pressing necessity of having an efficient instruments of administration, has carried OPEN IT to develop a module of Webmin for OpenVPN.
The Open VPNadmin module is web-based and it can be used within Webmin. Witj this module you can:
- manage the Certificate Authority (CA)
- manage the VPNs and check the active connections
Enhancements:
- The device number (tun0, tun1, etc.) is automatically added and can be modified interactively.
- In the module configuration area the default server has been added as a new item.
- Tests for the validity of keys, servers, and clients were modified.
- New config files were provided for NetBSD and OpenBSD.
- The server static form was adapted to the Webmin skins.
<<lessWebmin is a valid web-based instrument for Linux/Unix system administrator. OpenVPN allows to create and manage VPN supplying wide possibilities of configuration.
Their union, with also the pressing necessity of having an efficient instruments of administration, has carried OPEN IT to develop a module of Webmin for OpenVPN.
The Open VPNadmin module is web-based and it can be used within Webmin. Witj this module you can:
- manage the Certificate Authority (CA)
- manage the VPNs and check the active connections
Enhancements:
- The device number (tun0, tun1, etc.) is automatically added and can be modified interactively.
- In the module configuration area the default server has been added as a new item.
- Tests for the validity of keys, servers, and clients were modified.
- New config files were provided for NetBSD and OpenBSD.
- The server static form was adapted to the Webmin skins.
Download (MB)
Added: 2007-06-05 License: GPL (GNU General Public License) Price:
949 downloads
Viperin 0.1.2
Viperin-Z is a taskbar applet to manage virtual private network connections on the Sharp Zaurus family of handheld computers. more>>
Viperin-Z is a taskbar applet to manage virtual private network connections on the Sharp Zaurus family of handheld computers.
As a front-end to vpnc, the free Cisco VPN concentrator client, this application can set up various VPN configurations, connect to a selected one and monitor connection status.
Enhancements:
- Create session log in /var/log/viperinz.log
- Updated to work with vpnc 0.3.3
- Fix package removal
<<lessAs a front-end to vpnc, the free Cisco VPN concentrator client, this application can set up various VPN configurations, connect to a selected one and monitor connection status.
Enhancements:
- Create session log in /var/log/viperinz.log
- Updated to work with vpnc 0.3.3
- Fix package removal
Download (0.041MB)
Added: 2005-07-04 License: (FDL) GNU Free Documentation License Price:
1572 downloads
Viperin-Z 0.1.4
Viperin-Z provides a VPN connection manager GUI. more>>
Viperin-Z provides a VPN connection manager GUI.
Viperin-Z is a taskbar applet to manage virtual private network connections on the Sharp Zaurus family of handheld computers.
As a front-end to vpnc, the free Cisco VPN concentrator client, this application can set up various VPN configurations, connect to a selected one, and monitor connection status.
Enhancements:
- This release adds support for vpnc options "Enable Single DES", "UDP Encapsulate", and "Disable NAT Traversal".
- Various minor bugfixes were made.
<<lessViperin-Z is a taskbar applet to manage virtual private network connections on the Sharp Zaurus family of handheld computers.
As a front-end to vpnc, the free Cisco VPN concentrator client, this application can set up various VPN configurations, connect to a selected one, and monitor connection status.
Enhancements:
- This release adds support for vpnc options "Enable Single DES", "UDP Encapsulate", and "Disable NAT Traversal".
- Various minor bugfixes were made.
Download (MB)
Added: 2007-03-22 License: GPL (GNU General Public License) Price:
947 downloads
uvlan 0.03
uvlan is a project consisting of a User-space Virtual Local Area Network. more>>
uvlan is a project consisting of a User-space Virtual Local Area Network.
In other words, uvlan peers act as nodes on a network switch. Ethernet traffic is routed between peers intelligently. This allows for multiple networks to share resources and even IP address space.
Some may call it a VPN (Virtual Private Network) application, but its much more powerful: it is peer-to-peer, is much simpler, and operates at layer 2 (ethernet). VPNs generally operate at layer-3 (IP), and layer 2 applications like gaming cant be supported with layer 3 tunneling.
Differences with traditional VPN technology:
- It is peer-to-peer
- It doesnt require licensing
- It is much simpler
- It operates at Layer-2 (Ethernet), VPNs generally operate at Layer-3 (IP) Layer-2 applications like gaming cant be supported with Layer-3 tunneling.
<<lessIn other words, uvlan peers act as nodes on a network switch. Ethernet traffic is routed between peers intelligently. This allows for multiple networks to share resources and even IP address space.
Some may call it a VPN (Virtual Private Network) application, but its much more powerful: it is peer-to-peer, is much simpler, and operates at layer 2 (ethernet). VPNs generally operate at layer-3 (IP), and layer 2 applications like gaming cant be supported with layer 3 tunneling.
Differences with traditional VPN technology:
- It is peer-to-peer
- It doesnt require licensing
- It is much simpler
- It operates at Layer-2 (Ethernet), VPNs generally operate at Layer-3 (IP) Layer-2 applications like gaming cant be supported with Layer-3 tunneling.
Download (0.11MB)
Added: 2007-01-20 License: Public Domain Price:
1007 downloads
VTun 3.0.1
VTun is the easiest way to create Virtual Tunnels over TCP/IP networks with traffic shaping, compression, and encryption. more>>
VTun is the easiest way to create Virtual Tunnels over TCP/IP networks with traffic shaping, compression, and encryption.
In order to compile VTun you need some software packages.
Main features:
- Encryption
- Compression
- Traffic shaping
- VPN
- Mobile IP
- IP tunnel (tun).
- Supports point-to-point IP tunnel.
- Ethernet tunnel (ether).
- Supports all protocols that work over Ethernet: IP,IPX,Appletalk,Bridge,...
- Serial tunnel (tty).
- Supports all protocols that work over serial lines: PPP,SLIP,...
- Pipe tunnel (pipe).
- Supports all programs that works over Unix pipes.
- VTun protocol over TCP.
- Allows to establish tunnels behind firewalls. Very reliable.
- VTun protocol over UDP.
- Fast and efficient protocol with small tunneling overhead.
- Deflate (zlib).
- Very efficient compression. Supported for TCP only.
- LZO (lzo).
- Super fast compression. Supported for UDP and TCP.
- Challenge based authentication.
- No clear text passwords.
- BlowFish 128 bits key.
- Fast efficient encryption with 128 bits MD5 hash keys.
<<lessIn order to compile VTun you need some software packages.
Main features:
- Encryption
- Compression
- Traffic shaping
- VPN
- Mobile IP
- IP tunnel (tun).
- Supports point-to-point IP tunnel.
- Ethernet tunnel (ether).
- Supports all protocols that work over Ethernet: IP,IPX,Appletalk,Bridge,...
- Serial tunnel (tty).
- Supports all protocols that work over serial lines: PPP,SLIP,...
- Pipe tunnel (pipe).
- Supports all programs that works over Unix pipes.
- VTun protocol over TCP.
- Allows to establish tunnels behind firewalls. Very reliable.
- VTun protocol over UDP.
- Fast and efficient protocol with small tunneling overhead.
- Deflate (zlib).
- Very efficient compression. Supported for TCP only.
- LZO (lzo).
- Super fast compression. Supported for UDP and TCP.
- Challenge based authentication.
- No clear text passwords.
- BlowFish 128 bits key.
- Fast efficient encryption with 128 bits MD5 hash keys.
Download (0.064MB)
Added: 2007-06-12 License: GPL (GNU General Public License) Price:
543 downloads
Pyroman 0.3
Pyroman is a flexible and fast firewall tool. more>>
Pyroman is a flexible and fast firewall tool.
Main features:
The good:
- Really fast compared to sh+awk based solutions due to using iptables-restore
- Rollback to previous firewall on error to minimize risk of use
- Detailed error reporting to help configuring
- Easy syntax to add hosts, nats
- Designed for complex networks
- Written in easy to read python code
- Extensively documented (Python docstrings)
- You can add custom iptables rules when needed
- Lots of verification checks done before execution
- Designed to use the same configuration files on multiple hosts (e.g. failover firewalls or the destination host itself; it will detect if you are talking about a local or a remote host
The bad:
- Not designed for single-host workstation setups
- Doesnt completely hide iptables complexity from the admin (good or bad?)
- Only iptables, no TC/Shaping, no IPsec, proxy arp setup, VPN, ifconfig (I use other tools for that, e.g. heartbeat)
To tease you a little more into testing, heres an example host configuration: ("dmz" is an interface alias - where the web server is connected to -, as are "INT", "DMZ" and "ANY" for clients on these interfaces)
A really simple webserver configuration.
These examples are just boring...
But without NAT they would be even more boring.
# web server
add_host(
name="web",
ip="10.100.1.2",
iface="dmz"
)
# offering, well, web service.
allow(
client="ANY DMZ INT",
server="web",
service="www ssh ping"
)
# internal hosts may access FTP, too
allow(
client="INT",
server="web",
service="ftp"
)
# setup NAT
add_nat(
client="ANY INT",
server="web",
ip="12.34.56.80"
)
(Yes, this is a python script. No, you probably wont care to write your configuration in a programming language, will you?)
Enhancements:
- New in this version: iptables and kernel version checks (required for the new extended examples bittorrent filter) and some minor code cleanups and refactoring.
<<lessMain features:
The good:
- Really fast compared to sh+awk based solutions due to using iptables-restore
- Rollback to previous firewall on error to minimize risk of use
- Detailed error reporting to help configuring
- Easy syntax to add hosts, nats
- Designed for complex networks
- Written in easy to read python code
- Extensively documented (Python docstrings)
- You can add custom iptables rules when needed
- Lots of verification checks done before execution
- Designed to use the same configuration files on multiple hosts (e.g. failover firewalls or the destination host itself; it will detect if you are talking about a local or a remote host
The bad:
- Not designed for single-host workstation setups
- Doesnt completely hide iptables complexity from the admin (good or bad?)
- Only iptables, no TC/Shaping, no IPsec, proxy arp setup, VPN, ifconfig (I use other tools for that, e.g. heartbeat)
To tease you a little more into testing, heres an example host configuration: ("dmz" is an interface alias - where the web server is connected to -, as are "INT", "DMZ" and "ANY" for clients on these interfaces)
A really simple webserver configuration.
These examples are just boring...
But without NAT they would be even more boring.
# web server
add_host(
name="web",
ip="10.100.1.2",
iface="dmz"
)
# offering, well, web service.
allow(
client="ANY DMZ INT",
server="web",
service="www ssh ping"
)
# internal hosts may access FTP, too
allow(
client="INT",
server="web",
service="ftp"
)
# setup NAT
add_nat(
client="ANY INT",
server="web",
ip="12.34.56.80"
)
(Yes, this is a python script. No, you probably wont care to write your configuration in a programming language, will you?)
Enhancements:
- New in this version: iptables and kernel version checks (required for the new extended examples bittorrent filter) and some minor code cleanups and refactoring.
Download (0.021MB)
Added: 2006-04-17 License: MIT/X Consortium License Price:
1285 downloads
arp-scan 1.6
arp-scan sends ARP (Address Resolution Protocol) queries to the specified targets, and displays any responses that are received. more>>
arp-scan sends ARP (Address Resolution Protocol) queries to the specified targets, and displays any responses that are received.
It allows any part of the outgoing ARP packets to be changed, allowing the behavior of targets to non-standard ARP packets to be examined. The IP address and hardware address of received packets are displayed, together with the vendor details.
These details are obtained from the IEEE OUI and IAB listings, plus a few manual entries. It includes arp-fingerprint, which allows a system to be fingerprinted based on how it responds to non-standard ARP packets.
Enhancements:
- Support for Sun Solaris was added.
- This was tested on Solaris 9 (SPARC).
- The following new arp-fingerprint patterns were added for ARP fingerprinting: IOS 11.2, 11.3, and 12.4; ScreenOS 5.1, 5.2, 5.3, and 5.4; Cisco VPN Concentrator 4.7; AIX 4.3 and 5.3; Nortel Contivity 6.00 and 6.05; Cisco PIX 5.1, 5.2, 5.3, 6.0, 6.1, 6.2, 6.3, and 7.0.
- IEEE OUI and IAB MAC/Vendor files were updated.
- HSRP MAC address was added to mac-vendor.txt.
<<lessIt allows any part of the outgoing ARP packets to be changed, allowing the behavior of targets to non-standard ARP packets to be examined. The IP address and hardware address of received packets are displayed, together with the vendor details.
These details are obtained from the IEEE OUI and IAB listings, plus a few manual entries. It includes arp-fingerprint, which allows a system to be fingerprinted based on how it responds to non-standard ARP packets.
Enhancements:
- Support for Sun Solaris was added.
- This was tested on Solaris 9 (SPARC).
- The following new arp-fingerprint patterns were added for ARP fingerprinting: IOS 11.2, 11.3, and 12.4; ScreenOS 5.1, 5.2, 5.3, and 5.4; Cisco VPN Concentrator 4.7; AIX 4.3 and 5.3; Nortel Contivity 6.00 and 6.05; Cisco PIX 5.1, 5.2, 5.3, 6.0, 6.1, 6.2, 6.3, and 7.0.
- IEEE OUI and IAB MAC/Vendor files were updated.
- HSRP MAC address was added to mac-vendor.txt.
Download (0.26MB)
Added: 2007-04-13 License: GPL (GNU General Public License) Price:
950 downloads
Secleted [ 0 ] software to compare
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above vpn search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
