webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-09 18:45:54 +02:00
Code Issues Packages Projects Releases Wiki Activity
18,684 Commits 2 Branches 1 Tag
1af975dcebb2892a13775d344109508e46bb0be4
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Peter Müller 1af975dceb sysctl: Use strict Reverse Path Filtering 
The strict mode, as specified in RFC 3704, section 2.2, causes packets
to be dropped by the kernel if they arrive with a source IP address that
is not expected on the interface they arrived in. This prevents internal
spoofing attacks, and is considered best practice among the industry.

After a discussion with Michael, we reached the conclusion that
permitting users to configure the operating mode of RPF in IPFire causes
more harm than good. The scenarios where strict RPF is not usable are
negligible, and the vast majority of IPFire's userbase won't even
notice a difference.

This supersedes <495b4ca2-5a4b-2ffa-8306-38f152889582@ipfire.org>.

Suggested-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Reviewed-by: Adolf Belka <adolf.belka@ipfire.org>
2022-05-02 05:28:52 +00:00
config
sysctl: Use strict Reverse Path Filtering
2022-05-02 05:28:52 +00:00
doc
Improve README and CONTRIBUTING
2022-03-21 13:47:58 +00:00
html
Run ./make.sh update-contributors
2022-04-24 19:14:49 +00:00
langs
media.cgi: Added translation for 'inodes'
2022-04-24 19:08:34 +00:00
lfs
cups: Bump package version
2022-05-02 05:28:32 +00:00
src
cups: for now cups make a backup on uninstall
2022-05-02 05:28:16 +00:00
tools
Early spring clean: Remove trailing whitespaces, and correct licence headers
2022-02-18 23:54:57 +00:00
.gitignore
gitignore: add *.b2 checksum files
2022-04-08 00:32:40 +02:00
.mailmap
.mailmap: Add Adolf Belka
2021-03-10 14:42:37 +00:00
make.sh
libpipeline: Addition as build dependency for man
2022-05-01 08:43:09 +00:00
README.md
Improve README and CONTRIBUTING
2022-03-21 13:47:58 +00:00

README.md

IPFire 2.x - The Open Source Firewall

What is IPFire?

IPFire is a hardened, versatile, state-of-the-art Open Source firewall based on Linux. Its ease of use, high performance in any scenario and extensibility make it usable for everyone. For a full list of features have a look here.

This repository contains the source code of IPFire 2.x which is used to build the whole distribution from scratch, since IPFire is not based on any other distribution.

Where can I get IPFire?

Just head over to https://www.ipfire.org/download

How do I use this software?

We have a long and detailed wiki located here which should answers most of your questions.

But I have some questions left. Where can I get support?

You can ask your question at our community located here. A complete list of our support channels can be found here.

How can I contribute?

We have another document for this. Please look here.

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme 101 MiB
Languages
Perl 70.4%
Shell 23%
C 4%
Python 0.6%
Makefile 0.5%
Other 1.4%