jIPFire – Java front-end for iptables

It was more than a year ago that I have started writting a Java front-end for Linux’s iptables. Mainly to make my life easier by using it on different Linux distributions, as well as to see how could that be implemented on Java. From the start date until a few months ago it was developing a bit slow but still in a stable tempo. I haven’t looked at it for the last six months, or so, as it became a lower priority task.

The latest is release is 0.4.8-beta can be found on http://jipfire.ilug.gr. The functions it offers are more or less what a desktop may need of iptables plus some more “advanced” features like interface forwarding, ip forwarding, port forwarding, port redirection, IP connection limit and burst limit being the most notable ones. The whole list of the application’s functions can be seen on the website so I’ll avoid duplicating the list over here.
The current release is available in tarball file, in Slackware package and in RPM package. The source code is available on a tarball as well.

An earlier release of jIPFire, 0.4.5-beta, comes with iloog 8.02 liveCD.

If anyone out there has the will and time to try out the application and give some feedback, ideas and development effort is more than welcome.

-> http://jipfire.ilug.gr
-> http://sourceforge.net/projects/jipfire


4 thoughts on “jIPFire – Java front-end for iptables

  1. I am still in doubt, whether your code will be scalable, if someday, if we decide to convert it to a library and execute large number of changes (concurrently or in a series). My fear is you are using Process.exec()…, this piece of java code is not at all reliable, albeit, it does the work.
    You can use ProcessBuilder, but that too is same.
    I am currently working on a similar project for ISP and have to execute a large number of iptables and tc commands.
    I am writing a c port of the same operation.

  2. panoskrt

    I think you are right, the code, as it is now, can’t be effectively very scalable. When I was writing the code, I was aiming for simple desktop use, note for large ISP-like deployments! It all started to make my life easier by applying simple rules to my desktop. As you can probably also see, the project is short of dead as there hasn’t been any development since that post, more or less.

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s