On 09.06.2011 15:18, Tihomir Katic wrote: > Hi > > I developed some firewall optimizer for iptables optimization. > > FIRO is parsing output of iptables-save command and removes redundant > rules from it. Rules in each chain and table are optimized separately. > Optimization procedure continues until there are no more rules to > remove or to modify. As a result, FIRO generates new file with new set > of rules for every successful optimization procedure. Also, it logs > all actions and changes in separated files. > > List of optimization procedures: > - Remove irrelevant rules > - Remove redundant "shadowed after" rules > - Remove redundant "shadowed before" rules > - Remove last rules with same action as chain > - Merge rules > - Remove redundant parameters from rules > - Remove redundant elements from parameters > - Reposition of "logging" rules in chain > > This is free software, 1st published version, and I would appreciate > every download, every test, every reported bug, suggestion, etc. > > Link to FIRO: > http://valeria.zesoi.fer.hr/~tkatic Sounds interesting, but I can't unpack that rar, every file fails. Please provide a tar.gz/bz2 or something similar. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
