Cfengine might be a bit more popular than ferm. We know about 5 links to it since March 2021 and only 4 links to ferm. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Your admin uses cfengine for example https://cfengine.com/. - Source: Hacker News / about 1 month ago
Another oldie but goodie is cfengine: https://cfengine.com/. Source: over 1 year ago
I'm using rudder (https://www.rudder.io/), it's based on cfengine (https://cfengine.com/). But this is more enterprise ready, you'll be fine with lightweight ansible. Nice thing is, that rudder ensures compliance by periodically executing all defined rules on all endpoints. Source: over 2 years ago
CFEngine Ansible Chef Puppet Saltstack. - Source: dev.to / about 3 years ago
Automating mutable systems is often referred to as Configuration Management, and leverages tools such as Cfengine, Puppet, Chef, or Ansible. This tooling uses principles based on the concepts of target state, idempotence, and somewhat related to Mark Burgess’ Promise Theory. Configuration Management aims to make the system convergent, by running a tool on a regular basis, in order to resynchronize the system with... - Source: dev.to / about 3 years ago
I remember hating shorewall and similar ones because, well, I know iptables, and I know exactly what I want so using anything that tries to abstract it into it's own approach is torture as I need to take the rules I want and translate it to whatever mediocre paradigm shorewall (or ufw, or near-any other firewall manager in the wild) decided to put on top of iptables. I ended up using ferm... - Source: Hacker News / 10 months ago
I'm a big fan of ferm. Many major distros have it readily available as a package, and it makes for beautifully readable firewall definitions. Source: about 1 year ago
The last time I needed to do complex iptables stuff, I found FERM really helpful. The structured config language greatly reduces the amount of boilerplate code you have to type, while still having a pretty direct mapping to the emitted iptables rules. A bit like compiling sass to css. Source: about 2 years ago
Also just about last thing I want is to deploy another configuration management system alongside the system that manages everything else on machine. Currently we just use Puppet to deploy ferm rules (which is best described as "iptables+", naming convention and such are still iptables-like but a lot of macros/syntax sugar around it). Source: almost 3 years ago
Ansible - Radically simple configuration-management, application deployment, task-execution, and multi-node orchestration engine
ufw - Ufw stands for Uncomplicated Firewall, and is program for managing a netfilter firewall.
Chef - Automation for all of your technology. Overcome the complexity and rapidly ship your infrastructure and apps anywhere with automation.
Advanced Policy Firewall - Server-based firewall.
Puppet Enterprise - Get started with Puppet Enterprise, or upgrade or expand.
Shorewall - The Shoreline Firewall, more commonly known as “Shorewall”, is high-level tool for configuring...