NetFireCoRE

We implement an open source conflict resolution framework that consists of a user-space C application that automatically resolves firewall rules anomalies, and b) a generic tree (called policy tree), implemented as a Linux kernel module which maintains the resolved firewall rules and enables the necessary hooks to netfilter for matching incoming (or outgoing) network packets. Tree-based data structures offer improved efficiency compared to traditional access control lists (e.g. iptables or nftable maps), especially for large systems with a huge number of rules. Preliminary analysis from our implementation on ARM-based embedded systems examines efficiency and scalability of our framework.
To reference this work:
A. Papagrigoriou, P. Petrakis, M.D. Grammatikakis, "A firewall module resolving rules consistency", Workshop on Intelligent Solutions in Embedded Systems (WISES), 2017, pp. 47-50.
Available from:
https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=7986931

Features

network firewall over netfilter
conflict resolution of rules
Linux kernel module

Project Activity

See All Activity >

License

GNU General Public License version 3.0 (GPLv3)

Follow NetFireCoRE

NetFireCoRE Web Site

Other Useful Business Software

Keep company data safe with Chrome Enterprise

Protect your business with AI policies and data loss prevention in the browser

Make AI work your way with Chrome Enterprise. Block unapproved sites and set custom data controls that align with your company's policies.

Download Chrome

Rate This Project

User Reviews

Be the first to post a review of NetFireCoRE!

Additional Project Details

Operating Systems

Linux

Intended Audience

Science/Research, Security Professionals, System Administrators

User Interface

Command-line

Programming Language

Related Categories

C Firewall Software

Registered

2017-05-26

Similar Business Software

OPNsense

Simple packet filters are becoming a thing of the past. Even the open-source domain is moving towards Next-Generation Firewalls. And OPNsense is a top player when it comes to intrusion detection, application control, web filtering, and anti-virus. No network is too insignificant to be spared by...

See Software
enforza

The cost-effective alternative to AWS Network Firewall, Azure Firewall, and cloud-native NAT Gateways. Same features. Less cost. No data processing charges. enforza is a cloud-managed firewall platform that helps you build a unified multi-cloud perimeter with powerful firewall, egress...

See Software
AWS Network Firewall

With AWS Network Firewall, you can create firewall rules that provide fine-grained control over network traffic and easily deploy firewall security across your VPCs. Automatically scale your network firewall to protect your managed infrastructure. Protect your unique workloads with a flexible...

See Software
AWS Firewall Manager

AWS Firewall Manager is a security management service which allows you to centrally configure and manage firewall rules across your accounts and applications in AWS Organization. As new applications are created, Firewall Manager makes it easy to bring new applications and resources into...

See Software
Xvirus Firewall

Xvirus Firewall is designed as a simple application that enables the user to check all active connections and control which are granted access or not. Xvirus Firewall is a straightforward application that relies on whitelisting and blacklisting for managing the connections. There are no...

See Software
IPFire

IPFire is a hardened, versatile, state-of-the-art Open Source firewall based on Linux. Its ease of use, high performance in any scenario, and extensibility make it usable for everyone. Security is the highest priority in IPFire. It is hardened to protect itself from attacks from the Internet and...

See Software