NuFW, identity based filtering for Netfilter¶
About NuFW¶
NuFW adds user-based filtering to Netfilter, the state of the art IP filtering layer from the Linux kernel. Its exclusive algorithm allows authenticated filtering even on multiuser computers. NuFW can be seen as an Identity access management solution, at the network level.
NuFW Capabilities¶
NuFW can :- Authenticate any connection that goes through your gateway or only from/to a chosen subset or a specific protocol.
- Perform accounting, routing and quality of service based on users and not simply on IP addresses.
- Filter packets with criteria such as application and OS used by distant users.
- Log all traffic in SQL with username and application information
- Be the key of a secure and simple Single Sign On system.
Documentations¶
You will find here some documentations related to NuFW:Getting help¶
- Forums on nufw.org
- Mailing lists
- NuFW also has a dedicated channel : #nufw on irc.freenode.net
For developers¶
The latest source code can be accessed via git:
git clone git://www.nufw.org/git/nufw.git
Extensive information about development in the development guide.