IPFire

Last updated
Basic information
IPFire 2.21 - Web interface.png
Web interface
Developer IPFire-Team
Source model Open source (free software)
Latest release Version 2.29 Core Update 188 [1] / September 17, 2024;5 days ago (2024-09-17)
Available in Multilingual (including English)
Package manager Pakfire
Platforms x86-64, i686, i586, ARM
Kernel type Linux kernel [2]
Official website www.ipfire.org

IPFire is a hardened [3] open source Linux distribution that primarily performs as a router and a firewall; a standalone firewall system with a web-based management console for configuration.

Contents

IPFire originally started as a fork of IPCop [4] and has been rewritten on basis of Linux From Scratch since version 2. [5] It supports installation of add-ons to add server services, which can be extended into a SOHO server. [6] In April 2015, the project became a member of the Open Invention Network. [7]

System Requirements

The basic requirements are at least a 1 GHz CPU, 1GB of RAM, and a 4GB hard drive. Two network cards are needed to connect to an Ethernet network. DSL, LTE and Wi-Fi (WLAN) are supported, too, with corresponding hardware. [8]

The required computing power to run IPFire depends on the area of application. Most commonly, x86 systems are being used, but ARM devices, such as Raspberry Pi or Banana Pi, are supported, too. [9] IPFire can be used in virtual environments (such as KVM, VMWare, XEN, Qemu, etc.).

The basic setup of IPFire happens over a guided dialogue on the console, and the further administration takes place on the web-based management interface, such as add-ons and additional features. [10]

System Details

The project is regularly updated by the development team to maintain the security. [11] Developed as a stateful packet inspection (SPI) firewall. [12]

IPFire separates the network into different segments based on their security risk which are organised in colours. Normal clients connected to the LAN are represented as green, the Internet is represented as red, an optional DMZ is represented as orange and an optional Wireless network is represented as blue. No traffic can flow between segments unless specifically permitted through a firewall rule. [13]

IPFire's package management system, called Pakfire [14] allows to install system updates, which keep security up to date, and additional software packages for customisation to different usage scenarios and needs. The Linux system is customised for the concrete purpose of a firewall. [15]

The design is modular, making its functionalities extensible through plugins, [16] but the base comes with the following features [17]

IPFire Location

The IPFire Project built a free Internet geolocation database published under the Creative Commons license. [22] It is being used by The Tor Project to identify the location of Tor nodes and relays.

See also

Related Research Articles

<span class="mw-page-title-main">Yellow Dog Linux</span> Linux distribution

Yellow Dog Linux (YDL) is a discontinued free and open-source operating system for high-performance computing on multi-core processor computer architectures, focusing on GPU systems and computers using the POWER7 processor. The original developer was Terra Soft Solutions, which was acquired by Fixstars in October 2008. Yellow Dog Linux was first released in the spring of 1999 for Apple Macintosh PowerPC-based computers. The last version, Yellow Dog Linux 7, was released on August 6, 2012. Yellow Dog Linux lent its name to the popular YUM Linux software updater, derived from YDL's YUP and thus called Yellowdog Updater, Modified.

OpenVPN is a virtual private network (VPN) system that implements techniques to create secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It implements both client and server applications.

Cisco PIX was a popular IP firewall and network address translation (NAT) appliance. It was one of the first products in this market segment.

Smoothwall is a Linux distribution designed to be used as an open source firewall. Smoothwall is configured via a web-based GUI and requires little or no knowledge of Linux to install or use.

Vyatta is a software-based virtual router, virtual firewall and VPN product for Internet Protocol networks. A free download of Vyatta has been available since March 2006. The system is a specialized Debian-based Linux distribution with networking applications such as Quagga, OpenVPN, and many others. A standardized management console, similar to Juniper JUNOS or Cisco IOS, in addition to a web-based GUI and traditional Linux system commands, provides configuration of the system and applications. In recent versions of Vyatta, web-based management interface is supplied only in the subscription edition. However, all functionality is available through KVM, serial console or SSH/telnet protocols. The software runs on standard x86-64 servers.

<span class="mw-page-title-main">Zeroshell</span> Linux distribution

Zeroshell is a small open-source Linux distribution for servers and embedded systems which aims to provide network services. Its administration relies on a web-based graphical interface; no shell is needed to administer and configure it. Zeroshell is available as Live CD and CompactFlash images, and VMware virtual machines.

<span class="mw-page-title-main">Lubuntu</span> Linux distribution based on Ubuntu, utilizing the LXQt desktop environment

Lubuntu is a lightweight Linux distribution based on Ubuntu that uses the LXQt desktop environment in place of GNOME. Lubuntu was originally touted as being "lighter, less resource hungry and more energy-efficient", but now aims to be "a functional yet modular distribution focused on getting out of the way and letting users use their computer".

<span class="mw-page-title-main">Calculate Linux</span> Linux distribution

Calculate Linux is a Linux distribution optimized for fast deployment in an organization environment. It is based on the Gentoo Linux project and includes many preconfigured functions.

<span class="mw-page-title-main">ClearOS</span> Linux distribution

ClearOS is a Linux distribution by ClearFoundation, with network gateway, file, print, mail, and messaging services.

OpenWrt is an open-source project for embedded operating systems based on Linux, primarily used on embedded devices to route network traffic. The main components are Linux, util-linux, musl, and BusyBox. All components have been optimized to be small enough to fit into the limited storage and memory available in home routers.

<span class="mw-page-title-main">Ubuntu Kylin</span> Derivative of the Ubuntu operating system

Ubuntu Kylin is the official Chinese version of the Ubuntu computer operating system. It is intended for desktop and laptop computers, and has been described as a "loose continuation of the Chinese Kylin OS". In 2013, Canonical Ltd. reached an agreement with the Ministry of Industry and Information Technology to co-create and release an Ubuntu-based operating system with features targeted at the Chinese market.

OpenConnect is a free and open-source cross-platform multi-protocol virtual private network (VPN) client software which implement secure point-to-point connections.

<span class="mw-page-title-main">VyOS</span> Linux distribution

VyOS is an open source network operating system Linux distribution based on Debian.

<span class="mw-page-title-main">LXLE Linux</span> Lightweight Linux distribution

LXLE is a Linux distribution based upon the most recent Ubuntu/Lubuntu LTS release, using the LXDE desktop environment. LXLE is a lightweight distro, with a focus on visual aesthetics, that works well on both old and new hardware.

<span class="mw-page-title-main">Ubuntu MATE</span> Official flavor of Ubuntu with the MATE desktop environment

Ubuntu MATE is a free and open-source Linux distribution and an official derivative of Ubuntu. Its main differentiation from Ubuntu is that it uses the MATE desktop environment as its default user interface, instead of the GNOME 3 desktop environment that is the default user interface for Ubuntu.

<span class="mw-page-title-main">Parrot OS</span> Debian-based Linux distribution

Parrot OS is a Linux distribution based on Debian with a focus on security, privacy, and development.

<span class="mw-page-title-main">Endian Firewall</span> Linux distribution

Endian Firewall is an open-source router, firewall and gateway security Linux distribution developed by the South Tyrolean company Endian. The product is available as either free software, commercial software with guaranteed support services, or as a hardware appliance.

<span class="mw-page-title-main">KDE neon</span> Linux distribution based on Ubuntu

KDE neon is a Linux distribution developed by KDE based on Ubuntu long-term support (LTS) releases, bundled with a set of additional software repositories containing the latest versions of the Plasma 6 desktop environment/framework, Qt 6 toolkit and other compatible KDE software. First announced in June 2016 by Kubuntu founder Jonathan Riddell following his departure from Canonical Ltd., it has been adopted by a steadily growing number of Linux users, regularly appearing in the Top 20 on DistroWatch.com's popularity tables.

<span class="mw-page-title-main">Q4OS</span> Lightweight Linux distribution, based on Debian

Q4OS is a light-weight Linux distribution, based on Debian, targeted as a replacement for operating systems that are no longer supported on outdated hardware. The distribution is known for an addon called XPQ4, which adds themes intended to replicate the look and feel of Windows 2000 and Windows XP.

References

  1. "IPFire 2.29 - Core Update 188".
  2. Nestor, Marius (9 January 2018). "IPFire Open Source Firewall Linux Distro Gets Huge Number of Security Fixes". Softpedia. Retrieved 25 July 2018.
  3. rascal23 (9 November 2017). "Latest IPFire 2.19 Linux Firewall Update Patches OpenSSL, Wget Vulnerabilities". Full Circle. Archived from the original on 26 October 2022. Retrieved 25 July 2018.{{cite web}}: CS1 maint: numeric names: authors list (link)
  4. "Home". ipcop.org.
  5. Vervloesem, Koen. "IPFire 2.5: Firewalls and more". LWN.net. Retrieved 25 July 2018.
  6. Shah, Palak (2017-03-03). "Top 10 effective and efficient open source firewalls - Open Source For You". Open Source For You. Retrieved 2018-08-02.
  7. "The OIN Community - Open Invention Network". Open Invention Network. Archived from the original on 2018-06-23. Retrieved 2018-06-22.
  8. "Build Your Own Mini-ITX Firewall with IPFire – Complete DIY Guide". Ricmedia PC Help. 2017-03-14. Archived from the original on 2022-04-19. Retrieved 2018-06-22.
  9. "How to Install 'IPFire' Free Firewall Linux Distribution". www.tecmint.com. 2 February 2015. Retrieved 2018-06-22.
  10. "IPFire Installation Handbook" . Retrieved 2018-07-25.
  11. DistroWatch. "DistroWatch.com: IPFire". distrowatch.com. Retrieved 2018-06-21.
  12. "8 Open Source Firewalls to Secure Your BUSINESS". PCQuest. 2016-03-10. Retrieved 2018-08-02.
  13. "Best free Linux firewalls of 2018". TechRadar. Retrieved 2018-06-21.
  14. "Pakfire - the IPFire Wiki".
  15. Ankerholz, Amber. "IPFire 2.11 " Linux Magazine". Linux Magazine. Retrieved 2018-06-21.
  16. "Download IPFire 2.19 Core 120 / 3.0 Alpha 1". softpedia. Retrieved 2018-07-26.
  17. "Review of IPFire: The Linux based home firewall and router distribution - Linux News Site". Linux News Site. 2017-07-08. Retrieved 2018-07-26.
  18. "wiki.ipfire.org - Intrusion Prevention System (IPS)". wiki.ipfire.org. Retrieved 2019-11-19.
  19. York, Dan (4 August 2014). "Deploy360 4 August 2014 IPFire Adds DNSSEC Validation In New Release Via Crowdfunding". Internet Society. Retrieved 25 July 2018.
  20. Nestor, Marius. "IPFire 2.17 Update 90 Gets GeoIP-Based Blocking, Legacy Microsoft Hyper-V Support". softpedia. Retrieved 2018-07-26.
  21. Nestor, Marius. "Latest IPFire 2.19 Linux Firewall Update Patches OpenSSL, Wget Vulnerabilities". softpedia. Retrieved 2018-07-26.
  22. "A new location database for the Internet". 7 August 2020. Retrieved 2021-12-17.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.