Thursday, February 23, 2006

dfd-keeper - Dynamic Firewall Daemon

Just noticed in the PF mailing list that mentioning about dfd-keeper - the dynamic firewall daemon for PF that ease the administrations of OpenBSD PF, wondefully it is written in python languagage. I won't talk about what you can or can't do with dfd-keeper since it's already mentionned here, I will rather showing quick installation of dfd-keeper which is not clear in it's INSTALL doc. Assuming you are running OpenBSD Current just like me.

Instaling needed OpenBSD package

shell>pkg_add ${PKG_PATH}zope-2.8.4.tgz

shell>pkg_add ${PKG_PATH}py-xml-0.7.1.tgz

shell>pkg_add ${PKG_PATH bzip2-1.0.3.tgz

Installing ZopeInterface

shell>cd /usr/local/src


shell>tar xvzf ZopeInterface-3.0.1.tgz

shell>python ./ build

shell>python ./ install

Installing TwistedCore

shell>cd /usr/local/src


shell>bzip2 -d TwistedSumo-2006-02-12.tar.bz2

shell>tar xvf TwistedSumo-2006-02-12.tar

shell>cd TwistedSumo-2006-02-12/Twisted-2.2.0

shell>python ./ install

Installing dfd_keeper


hell>tar xvzf dfd_keeper.tar.gz

shell>cd dfd_keeper

shell>python ./ install

Now you can test it by running

shell>./ --test

shell>nc localhost 8007


To know what commands are available, just type show


Currently dfd_keeper is not supporting remote login since it only binds to localhost, it will only allow remote login once Travis(dfd_keeper coder) get ACL done in the future. By now you should be able to play with dfd-keeper.

Enjoy (:])

No comments: