IPFire

From HandWiki
Short description: Linux distribution

Template:Infobox operating system IPFire is a hardened[1] open source Linux distribution that primarily performs as a router and a firewall; a standalone firewall system with a web-based management console for configuration.

IPFire originally started as a fork of IPCop[2] and has been rewritten on basis of Linux From Scratch since version 2.[3] It supports installation of add-ons to add server services, which can be extended into a SOHO server.[4] In April 2015, the project became a member of the Open Invention Network.[5]

System Requirements

The basic requirements are at least a 1 GHz CPU, 1GB of RAM, and a 4GB hard drive. Two network cards are needed to connect to an Ethernet network. DSL, LTE and Wi-Fi (WLAN) are supported, too, with corresponding hardware.[6]

The required computing power to run IPFire depends on the area of application. Most commonly, x86 systems are being used, but ARM devices, such as Raspberry Pi or Banana Pi, are supported, too.[7] IPFire can be used in virtual environments (such as KVM, VMWare, XEN, Qemu, etc.).

The basic setup of IPFire happens over a guided dialogue on the console, and the further administration takes place on the web-based management interface, such as add-ons and additional features.[8]

System Details

The project is regularly updated by the development team to maintain the security.[9] Developed as a stateful packet inspection (SPI) firewall.[10]

IPFire separates the network into different segments based on their security risk which are organised in colours. Normal clients connected to the LAN are represented as green, the Internet is represented as red, an optional DMZ is represented as orange and an optional Wireless network is represented as blue. No traffic can flow between segments unless specifically permitted through a firewall rule.[11]

IPFire's package management system, called Pakfire[12] allows to install system updates, which keep security up to date, and additional software packages for customisation to different usage scenarios and needs. The Linux system is customised for the concrete purpose of a firewall.[13]

The design is modular, making its functionalities extensible through plugins,[14] but the base comes with the following features[15]

IPFire Location

The IPFire Project built a free Internet geolocation database published under the Creative Commons license.[20] It is being used by The Tor Project to identify the location of Tor nodes and relays.

See also

References

  1. rascal23 (9 November 2017). "Latest IPFire 2.19 Linux Firewall Update Patches OpenSSL, Wget Vulnerabilities". Full Circle. https://fullcirclemagazine.org/2017/11/09/latest-ipfire-2-19-linux-firewall-update-patches-openssl-wget-vulnerabilities/. 
  2. "Home". http://www.ipcop.org/. 
  3. Vervloesem, Koen. "IPFire 2.5: Firewalls and more". https://lwn.net/Articles/384419/. 
  4. Shah, Palak (2017-03-03). "Top 10 effective and efficient open source firewalls - Open Source For You" (in en-US). Open Source For You. https://opensourceforu.com/2017/03/top-10-effective-efficient-open-source-firewalls/. 
  5. "The OIN Community - Open Invention Network" (in en-US). Open Invention Network. http://www.openinventionnetwork.com/community-of-licensees/. 
  6. "Build Your Own Mini-ITX Firewall with IPFire – Complete DIY Guide" (in en-US). Ricmedia PC Help. 2017-03-14. https://pchelp.ricmedia.com/build-mini-itx-firewall-ipfire-diy-guide/. 
  7. "How to Install 'IPFire' Free Firewall Linux Distribution" (in en-US). 2 February 2015. https://www.tecmint.com/install-ipfire-firewall-distribution/. 
  8. "IPFire Installation Handbook". https://wiki.ipfire.org/installation/start. 
  9. DistroWatch. "DistroWatch.com: IPFire". https://distrowatch.com/table.php?distribution=ipfire. 
  10. "8 Open Source Firewalls to Secure Your BUSINESS" (in en-US). PCQuest. 2016-03-10. https://www.pcquest.com/8-open-source-firewalls-to-secure-your-business/. 
  11. "Best free Linux firewalls of 2018" (in en). TechRadar. https://www.techradar.com/news/best-free-linux-firewall. 
  12. "Pakfire - the IPFire Wiki". https://wiki.ipfire.org/configuration/ipfire/pakfire/start. 
  13. Ankerholz, Amber. "IPFire 2.11 " Linux Magazine" (in en-US). http://www.linux-magazine.com/Online/News/IPFire-2.11. 
  14. "Download IPFire 2.19 Core 120 / 3.0 Alpha 1" (in en-us). softpedia. https://linux.softpedia.com/get/System/Networking/IPFire-31415.shtml. 
  15. "Review of IPFire: The Linux based home firewall and router distribution - Linux News Site" (in en-US). Linux News Site. 2017-07-08. https://www.linuxnewssite.com/review-ipfire-linux-based-home-firewall-router-distribution-08072017685.html. 
  16. "wiki.ipfire.org - Intrusion Prevention System (IPS)". https://wiki.ipfire.org/configuration/firewall/ips. 
  17. York, Dan (4 August 2014). "Deploy360 4 August 2014 IPFire Adds DNSSEC Validation In New Release Via Crowdfunding". https://www.internetsociety.org/blog/2014/08/ipfire-adds-dnssec-validation-in-new-release-via-crowdfunding/. 
  18. Nestor, Marius. "IPFire 2.17 Update 90 Gets GeoIP-Based Blocking, Legacy Microsoft Hyper-V Support" (in en-us). softpedia. https://news.softpedia.com/news/IPFire-2-17-Update-90-Gets-GeoIP-Based-Blocking-Legacy-Microsoft-Hyper-V-Support-482646.shtml. 
  19. Nestor, Marius. "Latest IPFire 2.19 Linux Firewall Update Patches OpenSSL, Wget Vulnerabilities" (in en-us). softpedia. https://news.softpedia.com/news/latest-ipfire-2-19-linux-firewall-update-patches-openssl-wget-vulnerabilities-518430.shtml. 
  20. "A new location database for the Internet" (in en-us). 7 August 2020. https://blog.ipfire.org/post/a-new-location-database-for-the-internet. 

External links