Endian firewall

Range of functions

The current version includes the following main functions:

Gateway

• Ethernet support
• Load sharing
• Traffic shaping
• Multiple uplink support
• Uplink failover

Firewall & Security

• Firewall (both directions)
• demilitarized zone
• Intrusion Detection System / Intrusion Prevention System
• Web, FTP, and email antivirus
• Antispam
• Content filter
• HTTPS web interface
• SSH access and forwarding

• Automatic backup scheduler

Server services

• Transparent HTTP, FTP, SMTP and POP3 proxy
• Caching DNS server
• DHCP server (separate for the green, blue and orange networks)
• Network Address Translation
• Virtual Private Network (VPN) gateway with OpenVPN or IPsec
• NTP server

• Policy-based routing (interface, MAC address, protocol or port)
• generic SNMP support
• VLAN support (IEEE 802.1Q trunking)

User administration

• Local
• RADIUS
• LDAP
• Active Directory
• NTLM single sign-on

• User or group-wise HTTP proxy content filter rules

Logging & Monitoring

• Visualized Live Log Viewer (AJAX based), see figure "The web interface of the Endian Firewall"
• Log of activities and usage of network and hardware
• Connection statistics
• The syslogs can be forwarded to an external server

• Home page with integrated DASH board
• event-based notifications by email

Others

• Software RAID support

History and comparison to the origin

The origin of the Endian firewall is the Linux firewall IPCop , which in turn is a spin-off from Smoothwall. Due to numerous further developments, according to Endian, only a fifth of the original IPcop code is currently used. For example, Endian now uses the RPM Package Manager , which simplifies maintenance and avoids the frequent, lengthy compilation times that are common with LFS-based distributions such as IPcop. Newer versions were initially based on Linux From Scratch and from version 2.2 on RHEL or CentOS . With the upcoming version 3.0, the Endian Firewall should be practically "Smoothwall-" and "IPcop-free".

The biggest difference to IPCop is that the Endian Firewall is no longer seen as a pure router / firewall combination, but as a comprehensive gateway security solution (Unified Threat Management). For this purpose, a virus scanner and a spam blocker have been permanently integrated into the distribution. This means that the traffic from HTTP , FTP , POP 3 and SMTP can be scanned in real time and filtered if necessary. As completely new features, several WAN connections (for simple load distribution , failover ) and a WLAN hot spot function have been integrated.

In addition, the menus have been refined by many points compared to IPCop, which enables a more precise configuration of the individual services, which, however, also increases the complexity.

In summary, one can say that the Endian Firewall is the more comprehensive solution compared to IPCop in terms of gateway security, but as a compromise a somewhat more extensive configuration and noticeably higher requirements for the hardware equipment have to be accepted (for the Use of the full functionality of 512 MB RAM and 1 GHz processor clock recommended, or 256 MB and 500 MHz specified as minimum equipment).

In terms of development and business model, Endian differs from its origins Smoothwall and IPCop as follows:

• Smoothwall: Development of a commercial version by Smoothwall Ltd. as well as a free version by a community of volunteers. Innovations in the commercial version are only partially integrated into the free version, security updates are sometimes deliberately delayed. This company policy was the reason for part of the community to split off to IPCop
• IPCop: Development exclusively by a community of volunteers, there is only one free version.
• Endian Firewall: Friendly spin-off from IPCop with the aim of adding functions to the software in order to create an all-encompassing security gateway software. As with Smoothwall, there are functions in the commercial version that the free community version lacks.

Current development and criticism

Since the community versions 2.3 and 2.4, critical voices have been increasingly loud in the relevant user forums around Endian. Mainly three issues are criticized:

1. Stability and freedom from errors: While release 2.2 was still considered stable and mature, many users found the long awaited version 2.3 a disaster in terms of freedom from errors. All services, e.g. For example, the VPN module did not work for many users, so that using this release as a productive system was out of the question and they had to downgrade to 2.2 again. Many users expected that 2.4 would fix these bugs, but in many cases this did not happen. Version 2.4 is often referred to as even more buggy than 2.3. Many users could not even install it due to errors in the installation routine, so that Endian was forced to quickly replace the version offered for download with one that was improved in this regard (recognizable by the filename extension "RESPIN").
2. In connection with the poor quality of the last releases, the communication and transparency of the development process on the part of Endian Spa are increasingly being criticized. The company does offer a version known as the “community version” and on the homepage it appears that there is a community around the product - critical voices claim, however, that Endian does not have a real community in the sense of participating in the development , and no or only very sparse communication with the users of the community version would take place.
3. Endian was developed exclusively by Endian Spa, the entire development process is non-transparent and takes place "behind closed doors". The users of the community version, referred to by Endian as community, are not even included in a beta test or informed about future development goals, which means that participation in the development is not possible. As a result, voices are repeatedly heard discussing a possible fork .

resonance

• The Endian Firewall is part of the c't Debian Server Version 4 (released in August 2009) and was already in 2007.
• In July 2005 the Endian Firewall was voted Project of the Week by OSDir.
• The Linux Magazin 09/2008 tested Endian Firewall UTM Appliances 2.2 and certified the system with a test result in the upper midfield of comparable products.

Web links

• Endian Spa
• Endian Spa - website of the project
• Sourceforge website of the project
• Unofficial German-speaking forum

Individual evidence

1. ↑ http://distrowatch.com/?newsid=04686
2. ↑ http://distrowatch.com/?newsid=05731
3. ↑ Archive link ( Memento of the original from September 7, 2012 in the web archive archive.today ) Info: The archive link was automatically inserted and not yet checked. Please check the original and archive link according to the instructions and then remove this notice.  @1@ 2Template: Webachiv / IABot / www.linuxnetmag.org
4. ↑ https://www.heise.de/ct/projekte/ct-Debian-Server-284111.html
5. ↑ Article on the Project of the week at OSdir ( Memento of the original from December 27, 2015 in the Internet Archive ) Info: The archive link was automatically inserted and not yet checked. Please check the original and archive link according to the instructions and then remove this notice.  @1@ 2Template: Webachiv / IABot / www.osdir.com
6. ↑ http://www.linux-magazin.de/heft_abo/ Ausgabe/2008/09/ offenes_gruen