Endian Firewall
   HOME

TheInfoList



Click Here for Items Related To - Endian Firewall
OR:
Endian Firewall on:   [Wikipedia]   [Google]   [Amazon]

Endian Firewall is an open-source router,
firewall Firewall may refer to: * Firewall (computing), a technological barrier designed to prevent unauthorized or unwanted communications between computer networks or hosts * Firewall (construction), a barrier inside a building, designed to limit the spr ...
and gateway security Linux distribution developed by the
South Tyrol it, Provincia Autonoma di Bolzano – Alto Adige lld, Provinzia Autonoma de Balsan/Bulsan – Südtirol , settlement_type = Autonomous area, Autonomous Provinces of Italy, province , image_skyline = ...
ean company Endian. The product is available as either free software, commercial software with guaranteed support services, or as a hardware appliance (including support services).


Description

Endian Firewall is a
Linux Linux ( or ) is a family of open-source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991, by Linus Torvalds. Linux is typically packaged as a Linux distribution, w ...
security distribution, which is an independent, security management
operating system An operating system (OS) is system software that manages computer hardware, software resources, and provides common services for computer programs. Time-sharing operating systems schedule tasks for efficient use of the system and may also i ...
. The system is installed on a PC using a boot CD and can be operated without a monitor through its online interface or via a keyboard in a command-line interface. The server can be configured via a web interface or the serial interface. The main task of Endian Firewall is as a gateway, router and firewall, and can act as a
proxy Proxy may refer to: * Proxy or agent (law), a substitute authorized to act for another entity or a document which authorizes the agent so to act * Proxy (climate), a measured variable used to infer the value of a variable of interest in climate ...
for web,
email Electronic mail (email or e-mail) is a method of exchanging messages ("mail") between people using electronic devices. Email was thus conceived as the electronic ( digital) version of, or counterpart to, mail, at a time when "mail" mean ...
,
FTP The File Transfer Protocol (FTP) is a standard communication protocol used for the transfer of computer files from a server to a client on a computer network. FTP is built on a client–server model architecture using separate control and data ...
, SIP and DNS. Up to four different networks (dependent on the number of
network cards A network interface controller (NIC, also known as a network interface card, network adapter, LAN adapter or physical network interface, and by similar terms) is a computer hardware component that connects a computer to a computer network. Ear ...
installed in the host PC) can be managed. Networks are configured through the web interface. With Endian these are differentiated by their color coding: * Red Network: connection to the insecure
Internet The Internet (or internet) is the global system of interconnected computer networks that uses the Internet protocol suite (TCP/IP) to communicate between networks and devices. It is a '' network of networks'' that consists of private, pub ...
. * Green Network: Secure intranet e.g. file server. * Orange Network: Part Safe Demilitarized Zone (DMZ) . This includes devices that operate their own server and must be accessible over the Internet, such as Web or FTP servers. * Blue Network: Secure
wireless Wireless communication (or just wireless, when the context allows) is the transfer of information between two or more points without the use of an electrical conductor, optical fiber or other continuous guided medium for the transfer. The most ...
part, here on wireless devices can be connected. Thus, they are separated from the green network, which increases its security. Endian Firewall includes support for load balancing, which means you can add another connection to the Internet from the red network. Endian Firewall then distributes the network load on both
network interface controller A network interface controller (NIC, also known as a network interface card, network adapter, LAN adapter or physical network interface, and by similar terms) is a computer hardware component that connects a computer to a computer network. Ear ...
s.


License

The software is developed by the Italian Endian Spa from Appiano, South Tyrol and a community of volunteer developers. The license model of Endian provides a commercial version and a free version: * The commercial version can be purchased either as a standalone software (the product is called Endian or simply'' Endian UTM Software'') in order to install them on their own PCs, as well as in the form of finished '' Out of the Box '' - firewalls, with special hardware on which the software is preinstalled. There are currently seven hardware variants with different performance and for different network sizes: '' Mini 25'', ''Mercury 50'', ''Mercury 100'', ''Macro 250'', ''Macro 500'', ''Macro 1000'' and ''Macro 2500''. * Both the free ''Endian Firewall Community'' and the commercial ''Endian UTM Software'' are tailored for installation on your own hardware. The ''Endian Firewall Community'' is licensed under the
GPL The GNU General Public License (GNU GPL or simply GPL) is a series of widely used free software licenses that guarantee end users the four freedoms to run, study, share, and modify the software. The license was the first copyleft for general u ...
and is therefore Open-source software, open source software that can be downloaded for free. The community version does not include support and not all the features of the commercial version are available.


Features

The current version includes the following key features:


Gateway

* Ethernet support * Traffic shaping, Traffic Shaping / Quality of service * Multiple uplinks * Uplink Failover


Firewall & Security

* Firewall (both directions) * Demilitarized Zone * Intrusion Detection System / Intrusion Prevention System * Web-, FTP- and E-Mail-antivirus * Anti-spam techniques, Antispam * Content Filter * HTTPS- Web interface * Secure Shell, SSH- Access and Forwarding * Scheduler for automated backups


Server Services

* Transparent HTTP, HTTPS, FTP, Simple Mail Transfer Protocol, SMTP and Pop3, POP3-Proxy server * Caching DNS-Server * Dynamic Host Configuration Protocol, DHCP-server (separately for the green, blue and orange network) * Network Address Translation * Virtual Private Network (VPN) Gateway with OpenVPN or IPsec * Network Time Protocol, NTP-Server * Policy-based routing, Policy-Based Routing (port, MAC address, protocol or port) * Generic Simple Network Management Protocol, SNMP support * VLAN support (IEEE 802.1Q trunking)


User Management

* Local * RADIUS * Lightweight Directory Access Protocol, LDAP(s) * Active Directory * NT LAN Manager, NTLM Single Sign-On * User or group as HTTP proxy content filter rules


Logging & Monitoring

* Visualized Live Log Viewer (Ajax (programming), AJAX based), see figure "The web interface of Endian Firewall" * Log the activities and the stress of network and hardware * Connection statistics * Forwarding possibility of logs to an external syslog server * ntopng integration * Event-based notifications by e-mail


Others

* Support Software-RAID


History and compared to the original

Endian Firewall is a fork (software), fork of the Linux firewall IPCop, which in turn is a fork of SmoothWall. Due to numerous further developments, only one-fifth of the original IPCop code is used. Newer versions have been based initially on Linux From Scratch and from version 2.2 to Red Hat Enterprise Linux, RHEL, or on CentOS. With the upcoming version 3.0, Endian Firewall is virtually "Smoothwall-" and "IPCop-free". The greatest difference from IPCop is that the Endian Firewall is not merely a pure router (computing), router-firewall (computing), firewall combination, but a comprehensive gateway security solution (Unified Threat Management). For this, a virus scanner and a spam blocker have been firmly integrated into the distribution. This allows the transport of HTTP, FTP, POP3 and SMTP scanned in real-time and optionally filtered. Also, the menus were refined from the IPCop approach, reducing complexity, but also reducing reconfigurability of the individual services. Concerning the business model, Endian is different to its origins in SmoothWall and IPCop as follows: * SmoothWall: a commercial version is developed by SmoothWall Ltd and a free version by a community of volunteers. Innovations in the commercial version are only partially transferred, and security updates are sometimes deliberately delayed in the free version. This policy was the reason for the forking of Smoothwall and community development of IPCop * IPCop: development exclusively by a community of volunteers with only a free version. * Endian Firewall: Friendly refinement of IPCop with the aim to expand the software functions to create a comprehensive security gateway software. As with SmoothWall, Endian Firewall also includes features in the commercial version functions that are missing from the free community version.


Resonance

* The Endian Firewall is part of c't-Debian-Server Version 4 (published by August 2009) and this was already 2007. * In July 2005, the Endian firewall was OSDir elected Project of the Week. * The ''Linux Magazine'' 09/2008 has '' Endian Firewall UTM Appliances '' 2.2 and tested the system to certify a test result in the upper middle of comparable products.


References

{{Reflist


External links


Endian Spa

Endian Spa's Project website

SourceForge site of the project
Firewall software Linux distributions used in appliances Linux network-related software Linux distributions without systemd Linux distributions