Here is a
complete screenshot of 2.0.0 version.
Knetfilter is a KDE application designed to manage the netfilter
functionalities that come with the kernels 2.4 and later.
In Princip, all standard firewall system administration activities can
be done just using knetfilter.
But there is not just a GUI to iptables
comand line, it is possible also some monitoring with tcpdump and nmap (nmap is slow)
interfaces.
Here is a
complete screenshot of 2.0.0 version.
Now knetfilter is able to save iptables rules indipendently from iptable-save command (that does not work). ALL Chain policies are saved. (knetfilter has been the first GUI/application running with Linux 2.4.X able to save and restore your work on your firewall, at less for what I know :) )
Please try it and send me a feedback
Current version is 3.5.1 for KDE3 (stable)
Download latest (minor updates)
Download trought ftp
Knetfilter 3.5.1 is the KDE version 3.5, but should compile and
work also on every KDE release 3.
Please, send me a
feedback if you like this new style.
RPM packages for Red Hat 7.0 can be found at http://tony.seacow.net, as a courtesy of Tony Freitas.
DPKG Debian packages can be found at http://packages.debian.org as a courtesy of Ivan E. Moore II.
Since version 2.2.2 knetfilter allows CBQ traffic shaping using fw classifier. Actually a lot of more stuff about QoS support has been developed inside of knetfilter, as, for example, the possibility to delete a class or a qdisc, and a monitor to see which qdiscs, classes and filters have been configured. They are all cool features, but probably a save function will not be developed for now (happy to receive a patch for that).
WARNING!!!
Iptables 1.2.3 has a noisy bug, so that TOS mangling works just if TOS value
is setted using the name and not the numeric value. A workaround is easy,
but iptables-save saves TOS related rules using the exadecimal value, so
anyway users would not be able to restore them, since iptables
would be unable to understand the syntax. Knetfilter uses decimal value
to set the TOS, and that is a correct way to do so, but with iptables 1.2.3
this simply does not work! My suggestion for now is to avoid
iptables 1.2.3 if you need TOS mangling. Anyway iptables 1.2.3 is a really old version, so
why should you use it?
knetfilter 2.2.X for KDE2 and 1.2.X for KDE1 will still be manteined, but just for bug fixes, no more features will be added to 1.2.X versions.
KDE2 version is 2.2.5 (stable)
KDE1 version is 1.2.4 (stable)
All older versions can be downloaded from HERE
PLEASE, if you are upgrading from a previous version, DELETE,
/usr/bin/kiptables-save script.
Knetfilter 2 now puts it in a new location, and the script has been
fixed in both stable versions (2.0.2 and 1.2.4), so users
should replace it with the new one as soon.
If you want to use the more efficient iptables save function, please
upgrade as soon to iptables version 1.2.1a or newer.
Delevopers list:
Luigi Genoni
Contributors:
Sheer El-Showk
Michele Baldessari
Actually I work on Slackware-current systems, so for RPM packages,
please refer to http://tony.seacow.net,
and for DPKG packages to
http://packages.debian.org.
Anyway installation from sources is very simple
on every system; just do:
tar zxfv knetfilter-(version).tar.gz
cd knetfilter-(version)
rm config.cache; ./configure
make
make install
DONE!
Source compilation was tested using glibc 2.3.5 and
gcc 4.0.0 (libqt was compiled with gcc too), if
you are using an older gcc or
your qt library has been compiled with it, please
consider the good opportunity to recompile.