What is fwsnort FOR LINUX?

fwsnort FOR LINUX

fwsnort is an open source command-line application written in C and designed to parse the rules files that are included in the Snort intrusion detection software. It also generates equivalent iptables rulesets.

Key Features:

• Support for detecting TCP SYN, NULL, FIN, XMAS scans, and UDP scans


• Several signature rules for Snort


• Forensics mode for analyzing iptables log files


• Passive operating system fingerprinting through TCP SYN packets


• Email alerts and content-based alerts

Application Capabilities:

• Validation of code header and icmp type field


• Configurable danger level and scan threshold assignments


• Iptables ruleset parsing


• IP/network danger level auto-assignment


• DShield alerts and auto-blocking of scanning IP addresses


• Comprehensive status mode

Command-Line Options:

• Restrict Snort parser to translate specified rules only


• Print iptables script to a specified script instream


• Execute the fwsnort.sh script


• Revert to a different iptables version without fwsnort rules

After installing fwsnort, you can simply run the 'fwsnort' command in a terminal emulator as root to use the software.

Publisher: Michael Rash

How Download Works

Go to the Softpas website, press the 'Downloads' button, and pick the app you want to download and install—easy and fast!