<html>
<head>
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-cite-prefix">On 03/21/2014 11:36 PM, Shafiee Roozbeh
wrote:<br>
</div>
<blockquote
cite="mid:CABW24TMvzaeRfPDJ0bhNu99iXJgKU6pMDGyjx_bZRTeEnuMoEg@mail.gmail.com"
type="cite">
<p dir="ltr">@Manuel<br>
Our goal is not IPtables rule generator ! We are talking about a
version of CentOS that provide unified threat management which
will be install on a device or server.</p>
</blockquote>
And so far - except for the yet incomplete module from NethServer -
all the talk was around various rules generators.<br>
<pre wrap="">Could you please explain in more words what you wish to accomplish ? UTM is a great buzzword and integrating under the same umbrella firewall management and UTM is not trivial. Especially in a clustered world where part of the firewalling is done via appliances from various providers such as Cisco, Juniper, Vyatta, Sonicwall and Bluecoat
</pre>
<br>
<br>
<br>
<blockquote
cite="mid:CABW24TMvzaeRfPDJ0bhNu99iXJgKU6pMDGyjx_bZRTeEnuMoEg@mail.gmail.com"
type="cite">
<p dir="ltr"> On this machine except iptables we need proxy and
caching service like squid and some tools else.<br>
</p>
</blockquote>
Exactly my point. What other tools do you have in mind ? And WHY do
you need proxy / caching on this machine ? My main proxy for
instance is quite far from some of the border firewalls. Up to 5000
km away. And being able to maintain the firewall rules in a single
place and push them as needed is handy<br>
<br>
<br>
<blockquote
cite="mid:CABW24TMvzaeRfPDJ0bhNu99iXJgKU6pMDGyjx_bZRTeEnuMoEg@mail.gmail.com"
type="cite">
<p dir="ltr">
Firewalling is one of our goal...<br>
:-) </p>
</blockquote>
All right. And what other goals are there ?<br>
<br>
<br>
<br>
<br>
<blockquote
cite="mid:CABW24TMvzaeRfPDJ0bhNu99iXJgKU6pMDGyjx_bZRTeEnuMoEg@mail.gmail.com"
type="cite">
<div class="gmail_quote">On Mar 22, 2014 1:51 AM, "Manuel
Wolfshant" <<a moz-do-not-send="true"
href="mailto:wolfy@nobugconsulting.ro">wolfy@nobugconsulting.ro</a>>
wrote:<br type="attribution">
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">
<br>
<br>
On 21 martie 2014 22:50:39 EET, Shafiee Roozbeh <<a
moz-do-not-send="true"
href="mailto:roozbeh.shafiee@gmail.com">roozbeh.shafiee@gmail.com</a>>
wrote:<br>
>@Christoph<br>
>Yes, I worked with this tool sometimes ago but I think
that a web GUI<br>
>is<br>
>better for an administrator and our project because:<br>
><br>
>- An administrator maybe doesn't access to a Linux
desktop to work<br>
>with<br>
>fwbuilder but with his/her tablet or smartphone or even a
Microsoft<br>
>Windows<br>
>OS can work with web GUI<br>
><br>
If you can expose a web interface, you can expose ssh /VNC/VPN
whatever to a machine where fwbuilder can run. Google Play
provides apps for all of those and then some more<br>
<br>
>- Designing and development of web GUI with HTML/CSS is
faster and<br>
>easier<br>
>that using a framework like Qt or GTK<br>
><br>
>- The world is going to web !<br>
And fwbuilder can run on your management workstation and push
the rules to ANY server. Including the web server that you
mentioned :)<br>
<br>
</blockquote>
</div>
</blockquote>
</body>
</html>