Nuface : The intuitive interface for managing your firewalls

Description

Nuface is an intuitive firewall configuration interface for EdenWall/NuFW as well as for Netfilter. It lets you use high level objects, agglomerate objects into ACLs, and deals with generating Netfilter rules as well as LDAP Acls for NuFW.

sm_nuface-acls-en.png Nuface screenshots are available.

Architecture

The NuFace project is made of a frontend, written in PHP, and a backend, named nupyf , written in Python. The frontend's job is to generate a XML file. That XML file describes network and authentication objects, as well as ACLs designed by the administrator. The backend, in turn, converts that XML data into system commands and scripts, in order to apply the filtering rules. The backend can, of course, receive commands from the web interface. In fact, a complete NuFace installation requires no console administration to modify/reload firewall rules.

The tarballs include both the frontend and the backend.

Versionning

The stable version of NuFace is 1.0. We are working on NuFace 1.2, which will provide a couple of brand new features :

  • Finer ordering of ACLs
  • Layer 7 filtering support, thanks to the excellent Layer7 linux patch

NuFace 1.2 is not stable yet, so we don't recommend it for production use. Source code is available from Nuface trunk Subversion tree

License

Nuface is distributed under the terms of the GPL v2 license.

Demo

You can test nuface at the Nuface demo site. Of course you won’t be able to generate or apply firewall rules on this demo.

Download

1.0 tarballs are available from the Downloads area.

The Nuface Subversion tree is available for browsing.

Dependencies

A python module IPy is needed by nupyf.

The debian package for Ipy is also attached on this page.

Installation

Please see the enclosed documentation.

Online documentation

General, usage documentation for nuface

Documentation de nuface en français

Technical documentation for nupyf

Tickets

Support

INL provides commercial support for installation, configuration and maintenance of all Nufw components.

Attachments