bgSEC distributes bastion-firewall under the GPL license

bgSEC would like to announce the distribution of bastion-firewall under
the GPL license. bastion-firewall is a Netfilter and Iptables based
firewall that can be configured with plain text configuration files and
can be used as a normal firewall or as a firewall script generator. It
can generate graphical statistics using rrdtool that can be viewed in a
generated web page that includes the graphics for the traffic in the
interfaces and for the rules that we can specify. It's integrated with
the snort-inline IPS and can pass the traffic to this IPS so it can
decide whether accept or deny the traffic.

It's main characteristics are:

* Written in Spanish and traduced to English, documentation included.
bastion-firewall has been developed at Spain
* It includes all kinds of documentation, included some tutorials
(only in spanish) for the use and administration of the firewall
* Configuration files totally commented with a lot of hel for an easy
firewall configuration
* Developed in bash and C languages. 25000 lines of code that the user
can modify in an easy way
* It allows any number of inner and outer interfaces
* It can generate a web page with statistics of the traffic in the
firewall and statistics of the rules using rrdtool
* It generates a script with all the commands the firewall executes
when it's loaded. This script can be used as an independent firewall
* Integrated with the snort-inline IPS using the QUEUE facility
* It allows us to use blacklists and whitelists for IPs and MAC addresses
* It can be managed with a group of command to acomplish the more
commmon administration tasks
* MD5 based cache system to speed up the firewall loading when the
firewall configuration have not changed
* It allows us to control the traffic with the configuration files
using flows and also using lists with more specific rules
* It provides all kinds of facilities to do NAT, SNAT, DNAT and REDIRECT
* Activates all the kernel protections and prevents against denial of
service attacks, spoofing, fragmentation and others
* It includes a group of templates for the more common configurations
that allows the administrator to configurate the firewall easily
* It allows the use of IP lists and IP ranks as if they were IP
addresses,just including them in the configuration files
* Makes extensive use of network and services groups so you can
configure the firewall changing a minimum of variables in the
configuration files
* It is distributed in rpm, deb and tar.bz2 packages. Source code
available

bastion-firewall has a lot of other characteristics you can consult in
the documentation and in the configuration files.

To download bastion-firewall you can use the next facilities:

The main web site for bastion firewall allows the downloading of all the
files of bastion-firewall and it's hosted at bgSEC in the next address:

http://www.bgsec.com (Downloads section)

The web page of the project at Freshmeat is:

http://freshmeat.net/projects/bastion-firewall

The pages for the project at Sourceforge are:

Project summary page and development facilities:
http://sourceforge.net/projects/bastionfirewall

Project web page:
http://bastionfirewall.sourceforge.net

Project files:
http://sourceforge.net/project/showf...roup_id=116369

To collaborate in the project you can use the facilities at Sourceforge
visiting the project summary web page or you can follow the next link to
subscribe to the bastion-firewall mailing list at bgSEC:

http://list.bgsec.com

We hope bastion-firewall will be useful for the end user and also to the
production systems administrations.

--

Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
(E-Mail Removed)
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAÑA

The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
-- Jack Kerouac, "On the Road"

Op Sat, 14 Aug 2004 16:51:35 +0200 schreef Jose Maria Lopez Hernandez:

[snip]

An excerpt of RFC 1855, the Netiquette Guidelines, says:

"The cost of delivering an e-mail message is, on the average, paid about
equally by the sender and the recipient (or their organizations). This
is unlike other media such as physical mail, telephone, TV, or radio.
Sending someone mail may also cost them in other specific ways like
network bandwidth, disk space or CPU usage. This is a fundamental
economic reason why unsolicited e-mail advertising is unwelcome (and is
forbidden in many contexts)."


I for one consider this post to be "unsolicited e-mail advertising",
hence unwelcome.

PLOINK


--
There's no place like 127.0.0.1
Gerard Wassink http://linux.family.filternet.nl
http://freeware.family.filternet.nl
Linux counter #360967, "In a world without fences, who needs gates?"

Gerard Wassink <(E-Mail Removed)> writes:

]Op Sat, 14 Aug 2004 16:51:35 +0200 schreef Jose Maria Lopez Hernandez:

][snip]

]An excerpt of RFC 1855, the Netiquette Guidelines, says:

]"The cost of delivering an e-mail message is, on the average, paid about
]equally by the sender and the recipient (or their organizations). This
]is unlike other media such as physical mail, telephone, TV, or radio.
]Sending someone mail may also cost them in other specific ways like
]network bandwidth, disk space or CPU usage. This is a fundamental
]economic reason why unsolicited e-mail advertising is unwelcome (and is
]forbidden in many contexts)."


]I for one consider this post to be "unsolicited e-mail advertising",
]hence unwelcome.

It is not email. This is newsnet and a discussion group.
Most people pay nothing for their email, or for their netnews. It is
precisly this reason that spam is so popular.
This message was also on topic for this group. It was overlong, and should
have simply given a pointer to the location where interested people could
read more.


]PLOINK

Your right.

Bill Unruh wrote:
> Gerard Wassink <(E-Mail Removed)> writes:
>
> ]Op Sat, 14 Aug 2004 16:51:35 +0200 schreef Jose Maria Lopez Hernandez:
>
> ][snip]
>
> ]An excerpt of RFC 1855, the Netiquette Guidelines, says:
>
> ]"The cost of delivering an e-mail message is, on the average, paid about
> ]equally by the sender and the recipient (or their organizations). This
> ]is unlike other media such as physical mail, telephone, TV, or radio.
> ]Sending someone mail may also cost them in other specific ways like
> ]network bandwidth, disk space or CPU usage. This is a fundamental
> ]economic reason why unsolicited e-mail advertising is unwelcome (and is
> ]forbidden in many contexts)."
>
>
> ]I for one consider this post to be "unsolicited e-mail advertising",
> ]hence unwelcome.
>
> It is not email. This is newsnet and a discussion group.
> Most people pay nothing for their email, or for their netnews. It is
> precisly this reason that spam is so popular.
> This message was also on topic for this group. It was overlong, and should
> have simply given a pointer to the location where interested people could
> read more.
>
>
> ]PLOINK
>
> Your right.

Maybe someone is just forgetting we are simply announcing the release
(and this means JUST ONE MESSAGE) of a new FREE SOFTWARE for LINUX and
useful for NETWORKING (Offtopic?), that maybe could be interesting to
this group. Not commercial software or any kind of services. We think
spam it's a different kind of thing we hate as much as everyone.

Maybe netiquette is not the same in every group, in my country and the
groups I use to read or post to this kind of messages are wellcome or
simply ignored.

Anyway if someone considers this as spam or a bad netiquette behaviour
we are sorry about it. It was done with the best of intentions.

--

Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
(E-Mail Removed)
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAÑA

The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
-- Jack Kerouac, "On the Road"

Bill Unruh wrote:

> It is not email. This is newsnet and a discussion group.
> Most people pay nothing for their email, or for their netnews. It is
> precisly this reason that spam is so popular.

Maybe not directly, but you do normally pay for internet access and the ISP
pays for servers and bandwidth, out of your access fees. So, even if there
isn't a line item, you're still paying for it. Someone, somewhere always
has to pay for carrying that spam and storing it on servers etc. It's
usually not the spammer. This is also the reason for those fax spam laws.
They were passed, because the victim was being forced to pay for
advertising he doesn't want.

--

(This space intentionally left blank)

On 2004-08-14, Jose Maria Lopez Hernandez <(E-Mail Removed)> wrote:
>
> Maybe someone is just forgetting we are simply announcing the release
> (and this means JUST ONE MESSAGE) of a new FREE SOFTWARE for LINUX and
> useful for NETWORKING (Offtopic?), that maybe could be interesting to
> this group. Not commercial software or any kind of services. We think
> spam it's a different kind of thing we hate as much as everyone.
>
Networking _discussion_ and fault resolving is the purpose of this newsgroup.
It is not a place for promoting your product (regardless of its GPL status).
Sure I have said "oh and you might want a look at my QoS script" but it has
been at least inline and revelvant to the original posters query and in all
probability helpful; and definately not the start of the thread!

'ONE MESSAGE' and 'FREE SOFTWARE' and 'LINUX' = Freshmeat, anyone whom has
used Linux for more than a month, yet alone written something for Linux
should know this. Then again you could be just a marketing droid....you seem
to be acting Cluelessly(tm) like one.

> Maybe netiquette is not the same in every group, in my country and the
> groups I use to read or post to this kind of messages are wellcome or
> simply ignored.
>
yes but then the regular messages you get do not casade across _every_
news-server and onto *everyones* news clients of those whom subscribe to this
group. Sure your message might be 10kB large or whatever, then multiply this
by the number of people receiving it and the 'cost' of getting it distrubuted
across all the news servers, it very quickly adds up.

You have just single handly made your product/company as popular as a 419
email/posting.....well done, at least it means my company will be avoiding
your product like the plague.

> Anyway if someone considers this as spam or a bad netiquette behaviour
> we are sorry about it. It was done with the best of intentions.
>
Its called http://www.freshmeat.net/ , if you are planning on making
annoucements anywhere about new software that is opensource and so on, you
post it there. Get with the program.....</rant>

Cheers

Alex

On 14 Aug 2004 16:11:15 GMT, (E-Mail Removed) (Bill Unruh)
wrote:

>Gerard Wassink <(E-Mail Removed)> writes:
>
>]Op Sat, 14 Aug 2004 16:51:35 +0200 schreef Jose Maria Lopez Hernandez:
>
>][snip]
>
>]An excerpt of RFC 1855, the Netiquette Guidelines, says:
>
>]"The cost of delivering an e-mail message is, on the average, paid about
>]equally by the sender and the recipient (or their organizations). This
>]is unlike other media such as physical mail, telephone, TV, or radio.
>]Sending someone mail may also cost them in other specific ways like
>]network bandwidth, disk space or CPU usage. This is a fundamental
>]economic reason why unsolicited e-mail advertising is unwelcome (and is
>]forbidden in many contexts)."
>
>
>]I for one consider this post to be "unsolicited e-mail advertising",
>]hence unwelcome.
>
>It is not email. This is newsnet and a discussion group.
>Most people pay nothing for their email, or for their netnews. It is
>precisly this reason that spam is so popular.
>This message was also on topic for this group. It was overlong, and should
>have simply given a pointer to the location where interested people could
>read more.
>
>
>]PLOINK
>
>Your right.

It could have been a paragraph and a link, but it was on topic and I
found it interesting. This is usenet, not email.

Mike-

--
If you're not confused, you're not trying hard enough.
--
Please note - Due to the intense volume of spam, we have installed
site-wide spam filters at catherders.com. If email from you bounces,
try non-HTML, non-encoded, non-attachments,

James Knott wrote:

> Maybe not directly, but you do normally pay for internet access and the ISP
> pays for servers and bandwidth, out of your access fees. So, even if there
> isn't a line item, you're still paying for it. Someone, somewhere always
> has to pay for carrying that spam and storing it on servers etc. It's
> usually not the spammer. This is also the reason for those fax spam laws.
> They were passed, because the victim was being forced to pay for
> advertising he doesn't want.
>

As I said before, in the groups I use to read and post the announce of
the release of a new free software project it's not considered spam
at all. Maybe I'ts just a matter of different netiquette between
groups, but telling someone who has worked very hard in a project that
announcing the release of his work in a public newsgroup and asking
for people to collaborate in the project is spam is at least not
very considerated. Maybe my concept of nettiquete differs from
others, but I find the constant flame wars and trolls I usually
download with my one euro an hour connection at home are bad
netiquette, not my message.

--

Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
(E-Mail Removed)
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAÑA

The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
-- Jack Kerouac, "On the Road"

Alexander Clouter wrote:
> On 2004-08-14, Jose Maria Lopez Hernandez <(E-Mail Removed)> wrote:
>>
>> Maybe someone is just forgetting we are simply announcing the release
>> (and this means JUST ONE MESSAGE) of a new FREE SOFTWARE for LINUX and
>> useful for NETWORKING (Offtopic?), that maybe could be interesting to
>> this group. Not commercial software or any kind of services. We think
>> spam it's a different kind of thing we hate as much as everyone.
>>
> Networking _discussion_ and fault resolving is the purpose of this newsgroup.
> It is not a place for promoting your product (regardless of its GPL status).
> Sure I have said "oh and you might want a look at my QoS script" but it has
> been at least inline and revelvant to the original posters query and in all
> probability helpful; and definately not the start of the thread!
>
> 'ONE MESSAGE' and 'FREE SOFTWARE' and 'LINUX' = Freshmeat, anyone whom has
> used Linux for more than a month, yet alone written something for Linux
> should know this. Then again you could be just a marketing droid....you seem
> to be acting Cluelessly(tm) like one.

The fact my message is the begining of a thread and I announce the
release of my own project is not bad netiquette, at least not for me.
If I was talking about someone else project you probably have not
being so susceptible. But I can't find the difference, anyway.

And about the second paragraph. I use Linux since the ten disks
Slackware distributions, you just judge people without knowing
anything about them. About writing Linux software my projects
talks louder than anything I could say. Check them if you want,
and do it yourself better if you can, that's the GPL philosophy.

The project was released a week ago in Freshmeat and also in Sourceforge
some days ago. If you have read my original message you should know,
all the URLs for the project are in it.

Marketing droid? This is funny. We don't sell any Commercial Software
or hardware at all and we didn't any marketing in our message.

>
>> Maybe netiquette is not the same in every group, in my country and the
>> groups I use to read or post to this kind of messages are wellcome or
>> simply ignored.
>>
> yes but then the regular messages you get do not casade across _every_
> news-server and onto *everyones* news clients of those whom subscribe to this
> group. Sure your message might be 10kB large or whatever, then multiply this
> by the number of people receiving it and the 'cost' of getting it distrubuted
> across all the news servers, it very quickly adds up.

THIS thread probably is REALLY annoying for many people, being
distributed in all the news servers and getting onto everyone
news clients. And all because someone is too susceptible about
my posting. It's my fault? If this is the case then I am sorry
about it, but I think it's time to end the game.

>
> You have just single handly made your product/company as popular as a 419
> email/posting.....well done, at least it means my company will be avoiding
> your product like the plague.

Ok. It's your problem, not mine. I don't earn a single penny if you use
my firewall or not. It's free software, did you forget it?
Go and buy Checkpoint Firewall with Stonebeat if you want, I don't
mind at all.

>
>> Anyway if someone considers this as spam or a bad netiquette behaviour
>> we are sorry about it. It was done with the best of intentions.
>>
> Its called http://www.freshmeat.net/ , if you are planning on making
> annoucements anywhere about new software that is opensource and so on, you
> post it there. Get with the program.....</rant>

As I said before the project was released in freshmeat a week ago.

>
> Cheers
>
> Alex

And anyway if someone still considers my posting as spam or bad
netiquette I am sorry about it. Lesson learned. No more free software
release postings from me or bgSEC.

--

Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
(E-Mail Removed)
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAÑA

The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
-- Jack Kerouac, "On the Road"