Zorp is a proxy firewall suite with its core architecture is built around today's security demands: it uses application level proxies, is modular and component based, uses a script language to describe policy decisions, makes it possible to monitor encrypted traffic, lets you override client actions, and lets you protect your servers with its built in IDS capabilities.
|Tags||Security Cryptography Networking Firewalls|
|Operating Systems||POSIX Linux|
Release Notes: Zorp-related Munin/Nagios plugins were added. Generic netlink is now used instead of nfnetlink to communicate with KZorp. Originally targeted (dst) interface and interface group were added as a dimension to rules. VPN request ID (reqid) was added as a dimension to rules. A new DenyService service type was added for connection rejection.
Release Notes: Various minor code fixes.
Release Notes: This release adds IPv6 address handling to zones and subnets.
Release Notes: This release fixes passphrase handling of trusted CA private keys and removes support for obsolete Linux versions and Solaris.
Release Notes: Proxies have been added (POP3 and SMTP). The program stacking feature is extended (decisions can be made about the traffic based on the result returned by an external program).