Main

Note: As of 04/12/2004, we are no longer building rpms but are instead building debs.

Version 1.x

This provides a plugin solution to add customized Rules modules to the PCX Firewall 2.x toolkit.
The first plugin is VeryTight. This is a rewrite of VeryTightStatic from PCX Firewall 2.9. It has been updated to use an XML config file and can work with a valid config file anywhere in the filesystem, as long as it can read it.

VeryTight2 is an adaptation of VeryTight which does not mark all the rules and is attempting to make the most optimal, while still secure, firewall implementation possible.

The configuration file format for the VeryTight and VeryTight2 modules is defined here.

A web configuration application has been created.  Check out the Frontends section for more info.

Version 2.x

This is a major overhaul of the XML config file format. To make migrating your config files easier, I have provided a conversion script convert.pl which should be installed in /usr/share/doc/pcx_firewall_rules-2.x. It will take a version 1.7 config file and convert it to a version 2.0 config file.

To migrate from version 2.0 to 2.1 of the xml format, use convert2.pl.

NOTE: As of version 2.5 of the PCXFirewall Rules package, the convert.pl and convert2.pl scripts are no longer being included and the Config parsing code will no longer parse any config file older than 2.2. If you still have older config files than version 2.1, that you wanted to update to the latest config version, you will need to install version 2.4 of the PCXFirewall Rules package, convert your config files upto version 2.1 and then re-upgrade to version 2.5 which will automatically upgrade any config files it finds in the standard locations to version 2.2.

The configuration file format for the VeryTight and VeryTight2 modules is defined here.