IPFire

Last updated
Basic information
IPFire 2.21 - Web interface.png
Web interface
Developer IPFire-Team
Source model Open source (free software)
Latest release Version 2.27 Core Update 175 [1] / June 12, 2023;2 days ago (2023-06-12)
Available in Multilingual (including English)
Package manager Pakfire
Platforms x86-64, i686, i586, ARM
Kernel type Linux kernel [2]
Official website www.ipfire.org

IPFire is a hardened [3] open source Linux distribution that primarily performs as a router and a firewall; a standalone firewall system with a web-based management console for configuration.

Contents

IPFire originally started as a fork of IPCop [4] and has been rewritten on basis of Linux From Scratch since version 2. [5] It supports installation of add-ons to add server services, which can be extended into a SOHO server. [6] In April 2015, the project became a member of the Open Invention Network. [7]

System Requirements

The basic requirements are at least a 1 GHz CPU, 1GB of RAM, and a 4GB hard drive. Two network cards are needed to connect to an Ethernet network. DSL, LTE and Wi-Fi (WLAN) are supported, too, with corresponding hardware. [8]

The required computing power to run IPFire depends on the area of application. Most commonly, x86 systems are being used, but ARM devices, such as Raspberry Pi or Banana Pi, are supported, too. [9] IPFire can be used in virtual environments (such as KVM, VMWare, XEN, Qemu, etc.).

The basic setup of IPFire happens over a guided dialogue on the console, and the further administration takes place on the web-based management interface, such as add-ons and additional features. [10]

System Details

The project is regularly updated by the development team to maintain the security. [11] Developed as a stateful packet inspection (SPI) firewall. [12]

IPFire separates the network into different segments based on their security risk which are organised in colours. Normal clients connected to the LAN are represented as green, the Internet is represented as red, an optional DMZ is represented as orange and an optional Wireless network is represented as blue. No traffic can flow between segments unless specifically permitted through a firewall rule. [13]

IPFire's package management system, called Pakfire [14] allows to install system updates, which keep security up to date, and additional software packages for customisation to different usage scenarios and needs. The Linux system is customised for the concrete purpose of a firewall. [15]

The design is modular, making its functionalities extensible through plugins, [16] but the base comes with the following features [17]

IPFire Location

The IPFire Project built a free Internet geolocation database published under the Creative Commons license. [22] It is being used by The Tor Project to identify the location of Tor nodes and relays.

See also

Related Research Articles

<span class="mw-page-title-main">Yellow Dog Linux</span> Linux distribution

Yellow Dog Linux (YDL) is a discontinued free and open-source operating system for high-performance computing on multi-core processor computer architectures, focusing on GPU systems and computers using the POWER7 processor. The original developer was Terra Soft Solutions, which was acquired by Fixstars in October 2008. Yellow Dog Linux was first released in the spring of 1999 for Apple Macintosh PowerPC-based computers. The most recent version, Yellow Dog Linux 7, was released on August 6, 2012. Yellow Dog Linux lent its name to the popular YUM Linux software updater, derived from YDL's YUP and thus called Yellowdog Updater, Modified.

OpenVPN is a virtual private network (VPN) system that implements techniques to create secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It implements both client and server applications.

Cisco PIX was a popular IP firewall and network address translation (NAT) appliance. It was one of the first products in this market segment.

Smoothwall is a Linux distribution designed to be used as an open source firewall. Smoothwall is configured via a web-based GUI and requires little or no knowledge of Linux to install or use.

VPN-1 is a firewall and VPN product developed by Check Point Software Technologies Ltd.

Vyatta is a software-based virtual router, virtual firewall and VPN products for Internet Protocol networks. A free download of Vyatta has been available since March 2006. The system is a specialized Debian-based Linux distribution with networking applications such as Quagga, OpenVPN, and many others. A standardized management console, similar to Juniper JUNOS or Cisco IOS, in addition to a web-based GUI and traditional Linux system commands, provides configuration of the system and applications. In recent versions of Vyatta, web-based management interface is supplied only in the subscription edition. However, all functionality is available through KVM, serial console or SSH/telnet protocols. The software runs on standard x86-64 servers.

<span class="mw-page-title-main">Zeroshell</span> Linux distribution

Zeroshell is a small open-source Linux distribution for servers and embedded systems which aims to provide network services. Its administration relies on a web-based graphical interface; no shell is needed to administer and configure it. Zeroshell is available as Live CD and CompactFlash images, and VMware virtual machines.

<span class="mw-page-title-main">Lubuntu</span> Linux distribution based on Ubuntu, utilizing the LXQt desktop environment

Lubuntu is a lightweight Linux distribution based on Ubuntu and uses the LXQt desktop environment in place of Ubuntu's GNOME desktop. Lubuntu was originally touted as being "lighter, less resource hungry and more energy-efficient", but now aims to be "a functional yet modular distribution focused on getting out of the way and letting users use their computer".

<span class="mw-page-title-main">Calculate Linux</span> Linux distribution

Calculate Linux is a Linux distribution optimized for fast deployment in an organization environment. It is based on the Gentoo Linux project and includes many preconfigured functions.

<span class="mw-page-title-main">ClearOS</span> Linux distribution

ClearOS is a Linux distribution by ClearFoundation, with network gateway, file, print, mail, and messaging services.

Alpine Linux is a Linux distribution designed to be small, simple and secure. Alpine Linux uses musl, BusyBox and OpenRC instead of the more commonly used glibc, GNU Core Utilities and systemd respectively.

OpenWrt is an open-source project for embedded operating systems based on Linux, primarily used on embedded devices to route network traffic. The main components are Linux, util-linux, musl, and BusyBox. All components have been optimized to be small enough to fit into the limited storage and memory available in home routers.

<span class="mw-page-title-main">Ubuntu Kylin</span> Derivative of the Ubuntu operating system

Ubuntu Kylin is the official Chinese version of the Ubuntu computer operating system. It is intended for desktop and laptop computers, and has been described as a "loose continuation of the Chinese Kylin OS". In 2013, Canonical Ltd. reached an agreement with the Ministry of Industry and Information Technology to co-create and release an Ubuntu-based operating system with features targeted at the Chinese market.

<span class="mw-page-title-main">VyOS</span> Linux distribution

VyOS is an open source network operating system based on Debian.

<span class="mw-page-title-main">OpenMandriva Lx</span> Independent Linux distribution

OpenMandriva Lx is a Linux distribution descendant from Mandriva Linux. It is maintained by the OpenMandriva Association.

<span class="mw-page-title-main">LXLE Linux</span> Lightweight Linux distribution

LXLE is a Linux distribution based upon the most recent Ubuntu/Lubuntu LTS release, using the LXDE desktop environment. LXLE is a lightweight distro, with a focus on visual aesthetics, that works well on both old and new hardware.

<span class="mw-page-title-main">Parrot OS</span> Debian-based Linux distribution

Parrot OS is a Linux distribution based on Debian with a focus on security, privacy, and development.

<span class="mw-page-title-main">Endian Firewall</span> Linux distribution

Endian Firewall is an open-source router, firewall and gateway security Linux distribution developed by the South Tyrolean company Endian. The product is available as either free software, commercial software with guaranteed support services, or as a hardware appliance.

<span class="mw-page-title-main">Q4OS</span> Lightweight Linux distribution, based on Debian

Q4OS is a light-weight Linux distribution, based on Debian, targeted as a replacement for operating systems that are no longer supported on outdated hardware. The distribution is known for being similar in appearance to Microsoft Windows operating systems with some of its pre-installed themes inspired by the look and feel of Windows 2000 and Windows XP.

References

  1. "IPFire 2.27 - Core Update 175".
  2. Nestor, Marius (9 January 2018). "IPFire Open Source Firewall Linux Distro Gets Huge Number of Security Fixes". Softpedia. Retrieved 25 July 2018.
  3. rascal23 (9 November 2017). "Latest IPFire 2.19 Linux Firewall Update Patches OpenSSL, Wget Vulnerabilities". Full Circle. Full Circle. Retrieved 25 July 2018.
  4. "Home". ipcop.org.
  5. Vervloesem, Koen. "IPFire 2.5: Firewalls and more". LWN.net. Retrieved 25 July 2018.
  6. Shah, Palak (2017-03-03). "Top 10 effective and efficient open source firewalls - Open Source For You". Open Source For You. Retrieved 2018-08-02.
  7. "The OIN Community - Open Invention Network". Open Invention Network. Archived from the original on 2018-06-23. Retrieved 2018-06-22.
  8. "Build Your Own Mini-ITX Firewall with IPFire – Complete DIY Guide". Ricmedia PC Help. 2017-03-14. Retrieved 2018-06-22.
  9. "How to Install 'IPFire' Free Firewall Linux Distribution". www.tecmint.com. 2 February 2015. Retrieved 2018-06-22.
  10. "IPFire Installation Handbook" . Retrieved 2018-07-25.
  11. DistroWatch. "DistroWatch.com: IPFire". distrowatch.com. Retrieved 2018-06-21.
  12. "8 Open Source Firewalls to Secure Your BUSINESS". PCQuest. 2016-03-10. Retrieved 2018-08-02.
  13. "Best free Linux firewalls of 2018". TechRadar. Retrieved 2018-06-21.
  14. "Pakfire - the IPFire Wiki".
  15. Ankerholz, Amber. "IPFire 2.11 " Linux Magazine". Linux Magazine. Retrieved 2018-06-21.
  16. "Download IPFire 2.19 Core 120 / 3.0 Alpha 1". softpedia. Retrieved 2018-07-26.
  17. "Review of IPFire: The Linux based home firewall and router distribution - Linux News Site". Linux News Site. 2017-07-08. Retrieved 2018-07-26.
  18. "wiki.ipfire.org - Intrusion Prevention System (IPS)". wiki.ipfire.org. Retrieved 2019-11-19.
  19. York, Dan (4 August 2014). "Deploy360 4 August 2014 IPFire Adds DNSSEC Validation In New Release Via Crowdfunding". Internet Society. Retrieved 25 July 2018.
  20. Nestor, Marius. "IPFire 2.17 Update 90 Gets GeoIP-Based Blocking, Legacy Microsoft Hyper-V Support". softpedia. Retrieved 2018-07-26.
  21. Nestor, Marius. "Latest IPFire 2.19 Linux Firewall Update Patches OpenSSL, Wget Vulnerabilities". softpedia. Retrieved 2018-07-26.
  22. "A new location database for the Internet". 7 August 2020. Retrieved 2021-12-17.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.