etherdam is an IPTables firewall configuration engine. It implements a primitive (and hopefully simple) scripting language as an alternative to the direct use of iptables. It comes with full documentation plus a heavily-commented example config file. The config file should work for many scenarios with minimal adjustment.
SekHost is a host-based firewall and packet prioritization utility for Linux systems. The configuration is simple yet powerful functionality is available. Packet prioritization is very straightforward to configure, but can be turned off in the config file and should not be used in conjunction with any other traffic shaping on the host itself.
fwlog receives packets from iptables, and logs the header data. It supports IPv4, ICMP, UDP, and TCP packets. It translates IP addresses, protocol IDs, and TCP and UDP port numbers into human- readable names. It receives the packet information via the ULOG kernel module, and is similar to the ulog daemon provided by Harald Welte.
Proto Balance is a load balancing and traffic management system that can handle up to 10,000 concurrent connections and 20,000 downloads per second. Proto Balance is a load balancer and TCP traffic port forwarder for high availability. It features an easy-to-use Web interface that requires minimal knowledge of networking and no command-line experience. Its target audience includes enterprise cluster providers, Internet service providers, and network administrators.
InJoy Firewall is a flexible firewall security solution for businesses of any size. It offers preconfigured policy templates, including full customization options, IPSec VPN integration, gateway capabilities, intuitive management, access control, many documented deployment examples, and comprehensive documentation. Dynamic intrusion prevention combines static signatures with behavioral rules technology. The InJoy Firewall is for ethernet use (DSL, cable, etc.) on OS/2 and Linux. It supports both ethernet-based and dial-up connections on Windows. It includes PPPoE connectivity support.
pflogx is a simple tool that exports OpenBSD packet filter logs to XML files. It reads a binary log file generated by the pf logging daemon (pflogd) and generates a human-readable and exploitable XML file. Using an XSLT processor you can convert this XML file to any other format, such as HTML, CSV, or SQL.
Yafig is a LAMP-based firewall rule generator that creates shell scripts for use with Linux netfilter/iptables. The user interface is similar to the FireWall-1 policy editor. Its main features are Web-based host, network, and service management. support for multiple policies with individual password protection, shared objects for multiple policies, support for chains (default and custom), and architecture independence.