Firewall Builder consists of a GUI and set of policy compilers for various firewall platforms. It helps users maintain a database of objects and allows policy editing using simple drag-and-drop operations. The GUI and policy compilers are completely independent, which provides for a consistent abstract model and the same GUI for different firewall platforms. It currently supports iptables, ipfilter, ipfw, OpenBSD pf, Cisco PIX and FWSM, and Cisco routers access lists.
Firewall Builder for PIX hides the complexity of PIX command line interface and automatically configures options and parameters that usually make manual configuration a real chore. With this module, the same workstation running Firewall Builder can create and manage security policy on Cisco PIX or FWSM firewalls, as well as on firewalls built with iptables, OpenBSD pf, or ipfilter.
Firewall Builder for Cisco IOS ACL completes a set of tools designed to manage a multi-tiered network security system. This module can generate access control list configuration for Cisco routers running IOS 12.x. The Firewall Builder GUI's built-in installer uses ssh to communicate with the router to install the generated ACL configuration. Several installation methods are provided to make sure the management workstation is not "cut off" from the router in the middle of ACL activation. Firewall Builder's built-in policy importer can be used to import existing router configurations.
We have created an online User Survey so you can tell us how we
are doing and help us prioritize the features we are working
on. Our goal is to provide the best multi-vendor firewall
configuration solution available. Your input is very valuable to
us, so we would appreciate your taking a few moments to complete
this survey (link below). The survey is anonymous and should take
less than 10 minutes to complete.
Thanks for helping us continue to improve Firewall Builder!
Re: Distributed firewalls
you can intall and activate firewall policy if you use one of the install scripts available in the Contrib area on our sourceforge page. See FAQ 4.1