fCluster is a multi-threaded client/server redundancy application for your Linux firewall solution. fCluster is designed for the production environment with features that include: dynamic firewall synchronization, support for both ipchains and netfilter, user definable polling intervals and fail-over sequence, and email notification of a system failure. It also includes a Perl administration utility that allows you to configure both the server and the client from one machine, and view the status of the local and remote machines.
FF4L is a system for enhancing the GNU locate utility. It consists of a Linux kernel module and a couple of utilities that complement GNU locate. FF4L maintains a database file that logs all files created, so that locate can find files as soon as they are created instead of having to wait until the indexing utility is run.
The file check daemon monitors files according to rules defined in configuration files. When a file is considered stable (due to its age, presence of a flag file, etc.) then it gets copied to a new location. Rotating backups of the destination file can be made and owner, group and permissions can be specified for the destination. Some examples of where this utility has been found to be useful are: Moving files out of an incoming FTP directory in a timely manner. Moving files uploaded to a web server into directories with different user/group. This lets the administrator run the web server as a non-root user and accept uploads using web server based authentication and then move the files to a more secure area after the transfer. The details of how to determine whether a file is stable and what to do with it once it is are defined in a "Filespec" configuration file. There is a separate filespec for each file that will be monitored which means that each file can have unique behavior associated with it.
Firewall Builder consists of a GUI and set of policy compilers for various firewall platforms. It helps users maintain a database of objects and allows policy editing using simple drag-and-drop operations. The GUI and policy compilers are completely independent, which provides for a consistent abstract model and the same GUI for different firewall platforms. It currently supports iptables, ipfilter, ipfw, OpenBSD pf, Cisco PIX and FWSM, and Cisco routers access lists.