SecureWaLL
SecureWaLL is an open source customized distribution of BSD platform specifically for router, firewall and IPS.
SecureWaLL is a project aimed at creating a complete, embedded firewall software package that, when used together with an embedded PC, provides all the important features of commercial firewall boxes (including ease of use) at a fraction of the price.
SecureWaLL is a bsd system that has its boot-time configuration done with PHP, rather than the usual shell scripts, and that has the entire system configuration stored in XML format.
|
Features |
What is it? |
|
Gateways / Multi-WAN |
1.Highly flexible policy routing possible by selecting gateway on a per-rule basis (for load balancing, failover, multiple WAN, etc.) |
|
Attack Detection & Defense Mechanisms |
1.Network-based intrusion detection system (NIDS) performs real-time traffic analysis and packet logging on Internet Protocol (IP) networks.
2.Performs protocol analysis, content searching, and content matching.
3.Detect probes or attacks on Operating System, fingerprinting attempts, common gateway interface, buffer overflows, server message block probes, and stealth port scans.
|
|
Virtual Private Network |
1.Offers the option of IPSec, LT2P, PPTP and SSL VPN over its cluster appliances, providing secure remote access to organizations.
2.Compatible with major vendor platforms such as CISCO and desktop Operating Systems such as Windows 2000, Windows XP and Windows 7.
|
|
Routing |
1.Actively participates in network routing by supporting both static and dynamic routing protocols, including BGP, OSPF and RIP.
2.Route mode enables administrators to quickly deploy multilayer security solutions with a minimum of manual configuration.
|
|
Address Translation |
1.NAT features allows connecting multiple computers to the Internet using a single public IP address.
2.Accommodates much more advanced and complex NAT configurations required in networks with multiple public IP addresses.
|
|
High Availability |
1.Offers enterprise-class high availability capabilities with state-ful failover, allowing elimination of firewall as a single point of failure.
2.Two firewalls hardware are configured as a failover group.
3.SSC also includes configuration synchronization capabilities, allowing configuration changes on the primary and secondary firewall synchronize automatically.
|
|
Transparent Proxy |
1.Built-in HTTP Proxy server can be configured to work in a transparent mode.
2.Automatically redirects outbound http (TCP/80) traffic through the proxy.
|
|
Voice Over IP Gateway |
1.VoIP modules provides applications like conferencing, XML-RPC control of live calls, Interactive voice response (IVR), TTS/ASR (Text to Speech/Automatic Speech Recognition), by default.
2.Public switched telephone network (PSTN) interconnection ability supporting both Analogue and Digital circuits, Voice over IP protocols including SIP, SCCP, H.323, XMPP, Google Talk, t.38 and others.
|
|
Server Load Balancing |
1.Provides very fast and reliable solution offering high availability, load balancing, and proxying for TCP and HTTP-based applications.
2.Suitable for web sites crawling under very high loads while needing persistence or Layer7 processing.
3.Supports tens of thousands of connections with provided hardware.
4.Can be easily integrated with existing architectures with very less risk.
5.,Allows to define no exposure of fragile web servers to the Net.
|
|
Real Time Monitoring |
1.Performs Real Time Monitoring of Network traffic on any attached interface.
2.Tracks usage of TCP/IP network subnets and builds HTML files with graphs to display utilization.
3.Charts are built by individual IPs, and by default display utilization over 2 day, 8 day, 40 day, and 400 day periods.
4.Each IP address's utilization can be logged out at intervals of 3.3 minutes, 10 minutes, 1 hour or 12 hours in cdf format, or to a backend database server.
5.HTTP, TCP, UDP, ICMP, VPN, and P2P traffic are color coded.
|
|
Traffic Shaping |
1.Controls computer network traffic to optimize or guarantee performance, lower latency, and/or increase usable bandwidth by delaying packets that meet certain criteria.
|
|
Captive Portal |
1.Allows the administrator to force authentication, or redirection to a click through page for network access.
|
|
Connectivity with Enterprise Monitoring System |
1.Can be easily integrated with renowned enterprise monitoring system such as Nagios & Zabbix.
2.Helps testing network throughput, loss, and jitter.
|
|
Data Packet Capturing |
1.Most effective means of troubleshooting problems with network connectivity.
2.Helps to analyze all in-coming and out-going traffic of an interface.
3.Administrator can observe traffic inflow and outflow through the firewall to narrow down problems with firewall rules.
|
|
States Synchronization |
1.Ensures the firewall's state table is replicated to all failover configured firewalls.
|