NuFW

NuFW: nufw

Developer(s) NuFW Core Team

Stable release 2.2.20 / December 10, 2008

Operating system Linux

Type Packet filtering

License GNU General Public License

Website www.nufw.org

NuFW is a GPL extension to Netfilter (that is Linux firewall). It adds authentication to filtering rules. NuFW is also provided as a hardware firewall, in the EdenWall firewalling appliance.

Contents

1 Introduction

2 Principles

3 Awards

4 External links

Introduction

NuFW is an extension of Netfilter which brings the notion of user to IP filtering.

NuFW can :

Authenticate any connection that goes through your gateway or only from/to a chosen subset or a specific protocol (iptables is used to select the connections to authenticate).

Perform accounting, routing and Quality of service (QOS) based on users and not simply on IPs.

Filter packets with criteria such as application and OS used by distant users.

Be the key of a secure and simple Single Sign On system.

Principles

NuFW refuses the idea of IP == user as an IP address can easily be spoofed. It thus uses its own algorithm to perform authentication. It depends on two subsystems: Nufw which is connected to Netfilter and Nuauth which is connected to clients and Nufw.

The algorithm is the following:

A standard application sends a packet.

The Nufw client sees that a connection is being initiated and sends a user request packet.

The Nufw server queues the packet and sends an auth request packet to the Nuauth server.

The Nuauth server sums the auth request and the user request packet and checks this against an authentication authority.

The Nuauth server sends answer back to the Nufw server

The Nufw server transmits the packet following the answer given to its request.

This algorithm realizes an A Posteriori authentication of the connection. As there is no time-based association, this ensures the identity of the user who sent the packet. NuFW is the only real Authentication firewall, as it never associates a user with his machine.

Awards

2007 : Lutèce d'Or (Paris, France), Best Innovation

2005 : Les Trophées du Libre (Soissons, France), Security

External links

Free software portal

NuFW website

Netfilter website

NuApplet - Qt client for NuFW

v · d · eFirewall software

Application firewall · Context-based access control · Personal firewall · Stateful firewall · Unified threat management · Virtual firewall

Windows

Commercial

Check Point Integrity · Jetico Personal Firewall · Kaspersky Internet Security · McAfee Personal Firewall Plus · Microsoft Forefront Threat Management Gateway · Norton 360 · Norton Personal Firewall · Norton Internet Security · Online Armor Personal Firewall · Outpost Firewall Pro · Sunbelt Personal Firewall · Symantec Endpoint Protection · Windows Firewall · Windows Live OneCare · WinGate · WinRoute · ZoneAlarm

Freeware

Comodo Internet Security · Online Armor Personal Firewall · PC Tools Firewall Plus · ProtoWall · ZoneAlarm

Open-source

PeerBlock · PeerGuardian

Mac OS X
NetBarrier X4 · VirusBarrier X6 · PeerGuardian

Unix-like
Arptables · ClearOS · Endian Firewall · FireHOL · Firestarter · IPCop · IPFilter · IPFire · Ipfirewall · Iplist · Iptables · L7-filter · M0n0wall · MoBlock · Netfilter · NuFW · PF · pfSense · Sentry Firewall · Shorewall · SmoothWall · Untangle · Zentyal · Zeroshell

Appliances
Novell BorderManager · Vyatta · ZoneAlarm Z100G · Zorp firewall

Comparison of firewalls · List of router or firewall distributions

Categories:
Free system software
Free security software
Firewall software

nufw

Developer(s)	NuFW Core Team
Stable release	2.2.20 / December 10, 2008
Operating system	Linux
Type	Packet filtering
License	GNU General Public License
Website	www.nufw.org

Игры ⚽ Нужен реферат?

Look at other dictionaries:

NuFW — Développeur EdenWall … Wikipédia en Français
INL — Dates clés février 2004 : Création … Wikipédia en Français
Liste de pare-feu — Cette page dresse une liste non exhaustive de différentes implémentations connues de pare feu. Sommaire 1 Versions libres 2 Distribution Linux 3 Boîtiers pare feu 4 Pare feu personnels … Wikipédia en Français
Liste de pare-feux — Liste de pare feu Cette page dresse une liste non exhaustive de différentes implémentations connues de pare feu. Sommaire 1 Versions libres 2 Distribution Linux 3 Boîtiers pare feu 4 Pare feu per … Wikipédia en Français
Iptables — Infobox Software name = iptables caption = author = Rusty Russell developer = Netfilter Core Team released = 1998 latest release version = 1.4.1.1 latest release date = June 17, 2008 programming language = C operating system = Linux genre =… … Wikipedia
EdenWall — est un pare feu matériel produit par la société EdenWall Technologies. Il s agit d un pare feu de nouvelle génération, qui intègre la notion d identité des utilisateurs, contrairement aux pare feu traditionnels qui considèrent plutôt des critères … Wikipédia en Français
EdenWall Technologies — Création 1er mars 2004 Disparition 18 août 2011 Fondateurs Éric Leblond, Vincent Deffontaines … Wikipédia en Français
Comparison of firewalls — The following tables compare different aspects of a number of firewalls, starting from simple home firewalls up to the most sophisticated Enterprise firewalls. Contents 1 Firewall software 2 Firewall rule set basic filtering features comparison 3 … Wikipedia
Wormux — Saltar a navegación, búsqueda Wormux Captura de pantalla de Wormux Desarrolladora(s) Wormux Team … Wikipedia Español
Firewall (computing) — This article is about the network security device. For other uses, see Firewall. An illustration of where a firewall would be located in a network … Wikipedia

Academic Dictionaries and Encyclopedias

NuFW

Contents

Introduction

Principles

Awards

External links

Look at other dictionaries:

Share the article and excerpts

Academic Dictionaries and Encyclopedias

Wikipedia

NuFW

Contents

Introduction

Principles

Awards

External links

Look at other dictionaries:

Share the article and excerpts

Direct link