Software Alternatives & Reviews

Shorewall VS ferm

Compare Shorewall VS ferm and see what are their differences

Shorewall logo Shorewall

The Shoreline Firewall, more commonly known as “Shorewall”, is high-level tool for configuring...

ferm logo ferm

ferm is a tool to maintain complex firewalls, without having the trouble to rewrite the complex...
  • Shorewall Landing page
    Landing page //
    2019-06-17
  • ferm Landing page
    Landing page //
    2019-06-05

Shorewall

Categories
  • Cyber Security
  • Firewall
  • OS & Utilities
  • Perimeter Security And Firewalls
Website shorewall.org

ferm

Categories
  • Cyber Security
  • Firewall
  • Security & Privacy
  • Monitoring Tools
Website ferm.foo-projects.org

Shorewall videos

Shorewall sobre CentOS 7.7

ferm videos

FERM Scroll Saw Unboxing & Scroll Saw Review

More videos:

  • Review - ACTION FERM outils bricolage 20V à petit prix (Découverte gamme) (marteau perforateur meuleuse...
  • Review - Ferm Cordless Drill 20V 1.5Ah

Category Popularity

0-100% (relative to Shorewall and ferm)
Monitoring Tools
49 49%
51% 51
Firewall
40 40%
60% 60
Cyber Security
56 56%
44% 44
Security & Privacy
0 0%
100% 100

User comments

Share your experience with using Shorewall and ferm. For example, how are they different and which one is better?
Log in or Post with

Social recommendations and mentions

Based on our record, Shorewall should be more popular than ferm. It has been mentiond 6 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.

Shorewall mentions (6)

  • DHCP is not blocked by ufw/iptables
    All mentioned items have side-channel borked firewall and route rules in the past. Some bugs intermittently silently block local daemon instances from (re)loading like magic (some bugs only happen when the system is brought up). If your daily tasks include something less borked, than consider yourself very lucky you live without systemd. If I recall, ufw was intended for simple workstation rule sets. Personally,... - Source: Hacker News / 8 months ago
  • Life After Shorewall: Replacement Options?
    I've been using Shorewall for the last decade or so on everything from custom OpenWRT firewall/gateway solutions to servers running Debian or Ubuntu. It's great software that makes managing iptables/netfilter a breeze. Alas after many years, Mr. Eastep has retired and it doesn't appear the project is maintained by a new person or team. Source: 11 months ago
  • Tunneling private networked host to the internet through public-facing server?
    Shorewall (https://shorewall.org/) can do the job easily. Source: about 1 year ago
  • How to hairpin a whole network segment?
    Despite administrating Linux machines since 1994, I have never really looked closely at iptables because I was using shorewall and the briefly firehol. Source: over 1 year ago
  • dog: An open source firewall management system for packs of firewalls (iptables)
    You should just use https://shorewall.org/. Source: almost 3 years ago
View more

ferm mentions (4)

  • DHCP is not blocked by ufw/iptables
    I remember hating shorewall and similar ones because, well, I know iptables, and I know exactly what I want so using anything that tries to abstract it into it's own approach is torture as I need to take the rules I want and translate it to whatever mediocre paradigm shorewall (or ufw, or near-any other firewall manager in the wild) decided to put on top of iptables. I ended up using ferm... - Source: Hacker News / 8 months ago
  • what is your favourite firewall frontend?
    I'm a big fan of ferm. Many major distros have it readily available as a package, and it makes for beautifully readable firewall definitions. Source: about 1 year ago
  • anyone use a front-end to iptables?
    The last time I needed to do complex iptables stuff, I found FERM really helpful. The structured config language greatly reduces the amount of boilerplate code you have to type, while still having a pretty direct mapping to the emitted iptables rules. A bit like compiling sass to css. Source: almost 2 years ago
  • dog: An open source firewall management system for packs of firewalls (iptables)
    Also just about last thing I want is to deploy another configuration management system alongside the system that manages everything else on machine. Currently we just use Puppet to deploy ferm rules (which is best described as "iptables+", naming convention and such are still iptables-like but a lot of macros/syntax sugar around it). Source: almost 3 years ago

What are some alternatives?

When comparing Shorewall and ferm, you can also consider the following products

ufw - Ufw stands for Uncomplicated Firewall, and is program for managing a netfilter firewall.

YaST - YaST is the installation and configuration tool for https://alternativeto.

Advanced Policy Firewall - Server-based firewall.

Firewall Builder - Firewall Builder is Open Source multi-platform firewall management software that supports Linux...

pfSense - pfSense is a free and open source firewall and router that also features unified threat management, load balancing, multi WAN, and more

ConfigServer Firewall - A Stateful Packet Inspection (SPI) firewall, Login/Intrusion Detection and Security application for...