Top 23 Iptable Open-Source Projects
-
Project mention: ⟳ 4 apps added, 45 updated at f-droid.org | reddit.com/r/FDroidUpdates | 2022-07-03
AFWall+ (version 3.5.3): Control network traffic
-
Project mention: Kube-Router pods are failing: CrashLoopBackOff issue on all 3 pods | reddit.com/r/kubernetes | 2022-08-08
via: https://github.com/cloudnativelabs/kube-router/issues/329
-
Scout APM
Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.
-
Found this: https://github.com/htrgouvea/nipe was wondering what do you make of it?
-
Project mention: How I protect my externally exposed services | reddit.com/r/selfhosted | 2022-05-15
it does somewhat but requires additional rules for the docker chains: https://github.com/firehol/firehol/issues/114
-
It's odd, because the nat-pmp/pcp configuration does support a lifetime configuration (apparently not exposed by the OPNSense UI). I assume that's not shared by the UPnP code path. Even so, time-limited rules was one of the security additions with UPnP v2, so I would doubt "unlimited" would be an option if it were made configurable. It really feels like this is on Xbox to implement properly. Other UPnP consumers like Plex handle it just fine.
-
docker-host
A docker sidecar container to forward all traffic to local docker host or any other host
-
Project mention: Cosa ne pensate dell'utilizzo di blacklist di IP malevoli per ridurre i bot che scansionano siti alla ricerca di vulnerabilità? | reddit.com/r/ItalyInformatica | 2022-06-16
-
SonarLint
Clean code begins in your IDE with SonarLint. Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.
-
-
Project mention: JShielder: Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark | reddit.com/r/CKsTechNews | 2022-03-28
-
Project mention: A tool to help understand iptables rules? | reddit.com/r/linuxquestions | 2021-12-15
Is there anything better than https://github.com/Nudin/iptable_vis that could help understand a large set of iptables rules? What's the state of the art for iptables visual guidance? Or maybe not visual, but something that translates iptables -L into more readable English.
-
Project mention: A working regex for the fallback_access.log in nginx proxy manager | reddit.com/r/nginxproxymanager | 2021-12-21
My setup is all docker on the raspberry pi 4 8gb. I can not seem to find a good regex for this log file. All log entries fail when testing. You wish it will put the client entry IP address in iptables. My regex knowledge is zero so I depend on examples (that don't work). I have no problems with the configuration that works fine. The proxy xx access log has a different format, but if someone has a working regex for that file, please let me know. For fail2ban I use https://github.com/crazy-max/docker-fail2ban For NPM I use https://github.com/jc21/nginx-proxy-manager In fail2ban I use the filter.d dir for the conf file. I can see it's loading in the log but the testing from within the docker image gives no result.
-
Project mention: My First 5 Minutes On A Server; Or, Essential Security for Linux Servers | reddit.com/r/selfhosted | 2021-12-08
Solid advice, most of it is now covered by GeerlingGuy's Security Ansible role (https://github.com/geerlingguy/ansible-role-security) and the Firewall one (https://github.com/geerlingguy/ansible-role-firewall).
-
-
Project mention: OpenSnitch is a GNU/Linux port of the Little Snitch application firewall | news.ycombinator.com | 2022-06-25
> Besides, why would I want to Wireshark my browser?
https://github.com/gustavo-iniguez-goya/opensnitch/issues/21
https://nullsweep.com/why-is-this-website-port-scanning-me/
https://user-images.githubusercontent.com/2742953/84960681-9...
-
-
toriptables2
Tor Iptables script is an anonymizer that sets up iptables and tor to route all services and traffic including DNS through the Tor network.
Project mention: toriptables2: Tor Iptables script sets up iptables and tor to route all services and traffic including DNS through the Tor network. | reddit.com/r/CKsTechNews | 2022-01-06 -
secure-wireguard-implementation
A guide on implementing a secure Wireguard server on OVH (or any other Debian VPS) with DNSCrypt, Port Knocking & an SSH-Honeypot
I'm trying to create a double (chained) Wireguard tunnel. I've followed the suggested instructions in the following link but it doesn't seem to work.
-
Project mention: Running a private mail server for six years, easy peasy | news.ycombinator.com | 2022-02-22
-
Project mention: Using Yubikey for SSH, always asking for password (Fedora GNOME) | reddit.com/r/yubikey | 2022-07-24
Sure. I use a slightly modified version of the configuration given by DrDuh in their YubiKey guide (gpg.conf & gpg-agent.conf).
-
hev-socks5-tproxy
A simple, lightweight socks5 transparent proxy for Linux. (IPv4/IPv6/TCP/UDP over TCP)
Project mention: Arti 0.1.0: Tor re-written in Rust now has a stable API | news.ycombinator.com | 2022-03-15 -
iptables-nftables-multiroute-firewall
A collection of nftables, multi routing scripts, port knocked, and iptables files. To get inspiration to make your own firewalls.
Project mention: Help! Left a SSH server with weak password&username. Checked logs and I'm getting brute forced. | reddit.com/r/sysadmin | 2021-11-20 -
geoipsets
Python package to generate country-specific IP network ranges consumable by both iptables/ipset and nftables.
Project mention: NixOS equivalent for system-wide "pip install xyz"? | reddit.com/r/NixOS | 2022-02-26Most of the documentation seems geared towards someone trying to build a Python app using Nix... but I'm not trying to build a python app or just get a local shell, so I don't think that a virtualenv is the solution here? What I would like to accomplish is to install an app from pip (geoipsets) onto my NixOS server and make it available to firewall scripts.
-
Iptables related posts
- Using Yubikey for SSH, always asking for password (Fedora GNOME)
- No data after turning off wifi
- Cosa ne pensate dell'utilizzo di blacklist di IP malevoli per ridurre i bot che scansionano siti alla ricerca di vulnerabilità?
- How I protect my externally exposed services
- How to easily convert iptables-based rsyslog/logrotate configs to nflog/ulogd2?
- Can't Direct Traffic to Cloud Pi-Hole
- AfWall needs new developer. Someone please fork it.
Index
What are some of the best open-source Iptable projects? This list will help you:
| Project | Stars | |
|---|---|---|
| 1 | afwall | 2,200 |
| 2 | kube-router | 1,940 |
| 3 | nipe | 1,413 |
| 4 | firehol | 1,334 |
| 5 | miniupnp | 1,160 |
| 6 | docker-host | 940 |
| 7 | ipsum | 824 |
| 8 | kalitorify | 752 |
| 9 | JShielder | 590 |
| 10 | iptable_vis | 487 |
| 11 | docker-fail2ban | 443 |
| 12 | ansible-role-firewall | 430 |
| 13 | ipt-netflow | 421 |
| 14 | opensnitch | 393 |
| 15 | polycube | 386 |
| 16 | toriptables2 | 371 |
| 17 | secure-wireguard-implementation | 285 |
| 18 | IPSet_ASUS | 245 |
| 19 | config | 224 |
| 20 | hev-socks5-tproxy | 191 |
| 21 | iptables-nftables-multiroute-firewall | 66 |
| 22 | geoipsets | 59 |
| 23 | rust-iptables | 58 |
Are you hiring? Post a new remote job listing for free.
