spamassassin The SpamAssassin spam detection software. http://spamassassin.apache.org/ Security 0.1 PRE-ALPHA fernando@netfilter.com.br http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.1-release/All p5-Mail-SpamAssassin-3.1.0_6.tbz http://www.pfsense.org/packages/config/sassassin.xml sassassin.xml p3scan Packet Filter port of a POP3 virus/spam scanner. http://www.undergroundsecurity.com/p3scan/ Security 0.1 PRE-ALPHA fernando@netfilter.com.br http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.1-release/All pcre-6.6_1.tbz http://www.pfsense.org/packages/config/p3scan.xml p3scan.xml clamsmtp SMTP virus scanner. http://memberwebs.com/nielsen/software/clamsmtp/ Security 0.1 PRE-ALPHA fernando@netfilter.com.br http://www.pfsense.org/packages/config/clamsmtp.xml clamsmtp.xml viralator HTTP virus scanner. http://viralator.sourceforge.net/ Security 0.1 PRE-ALPHA fernando@netfilter.com.br http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.1-release/All perl-5.8.8.tbz p5-libwww-5.805.tbz squirm-1.26.tbz http://www.pfsense.org/packages/config/viralator.xml viralator.xml clamav The ClamAV antivirus. http://www.clamav.net/ Security 0.1 PRE-ALPHA fernando@netfilter.com.br http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All http://www.pfsense.org/packages/config/clamav.xml clamav.xml havp http://havp.sf.net/ HTTP Antivirus Proxy Services http://agni.linuxense.com/packages/config/havp.xml http://agni.linuxense.com/packages havp-0.80_5.tbz 0.6 ALPHA raj@linuxense.com havp.xml ntop http://www.ntop.org/ ntop is a network probe that shows network usage in a way similar to what top does for processes. In interactive mode, it displays the network status on the user's terminal. In Web mode it acts as a Web server, creating an HTML dump of the network status. It sports a NetFlow/sFlow emitter/collector, an HTTP-based client interface for creating ntop-centric monitoring applications, and RRD for persistently storing traffic statistics. Network Management http://www.pfsense.org/packages/All/ ntop-3.2_2.tbz 3.2_2 BETA http://www.pfsense.com/packages/config/ntop.xml ntop.xml pfflowd http://www.mindrot.org/pfflowd.html pfflowd converts OpenBSD PF status messages (sent via the pfsync interface) to Cisco NetFlow datagrams. These datagrams may be sent (via UDP) to a host of one's choice. Utilising the OpenBSD stateful packet filter infrastructure means that flow tracking is very fast and accurate. Network Management http://www.pfsense.com/packages/config/pfflowd.xml http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All pfflowd-0.6.tbz 0.6 BETA pfflowd.xml nick@buraglio.com widentd RFC1413 auth/identd daemon with fixed fake reply http://www.webweaving.org/widentd Services http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All widentd-1.03.tbz 1.03 ALPHA ALPHA http://www.pfsense.com/packages/config/widentd.xml widentd.xml freeradius http://www.freeradius.org/ A free implementation of the RADIUS protocol. System 0.1 PRE-ALPHA fernando@netfilter.com.br http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All freeradius-1.0.4.tbz http://www.pfsense.org/packages/config/freeradius.xml freeradius.xml stunnel http://www.stunnel.org/ The stunnel program is designed to work as an SSL encryption wrapper between remote client and local (inetd-startable) or remote servers. It can be used to add SSL functionality to commonly used inetd daemons like POP2, POP3, and IMAP servers without any changes in the program's code. It will negotiate an SSL connection using the OpenSSL or SSLeay libraries. It calls the underlying crypto libraries, allowing stunnel to support whatever cryptographic algorithms you compiled into your crypto package. Network Management http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All stunnel-4.11.tbz 4.11 Stable http://www.pfsense.com/packages/config/stunnel.xml stunnel.xml iperf http://dast.nlanr.net/Projects/Iperf/ Iperf is a tool for measuring maximum TCP and UDP bandwidth, reminiscent of ttcp and nettest. It has been written to overcome the shortcomings of those aging tools. Iperf can also test UDP bandwidth, loss, and jitter. Network Management http://www.pfsense.com/packages/config/iperf.xml http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All iperf-2.0.2.tbz 2.0.2 ALPHA iperf.xml spamd http://www.openbsd.org/spamd/ Tarpits like spamd are fake SMTP servers, which accept connections but don't deliver mail. Instead, they keep the connections open and reply very slowly. If the peer is patient enough to actually complete the SMTP dialogue (which will take ten minutes or more), the tarpit returns a 'temporary error' code (4xx), which indicates that the mail could not be delivered successfully and that the sender should keep the mail in their queue and retry again later. Services http://www.pfsense.com/packages/config/spamd.xml http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All spamd-3.7.tbz 4.3 BETA geekgod@geekgod.com spamd.xml spamd spamd.log assp http://assp.sourceforge.net The Anti-Spam SMTP Proxy (ASSP) Server project is an open source platform-independent SMTP Proxy server which implements whitelists and Bayesian filtering to rid the planet of the blight of unsolicited email (UCE). UCE must be stopped at the SMTP server. Anti-spam tools must be adaptive to new spam and customized for each site's mail patterns. This free, easy-to-use tool works with any mail transport and achieves these goals requiring no operator intervention after the initial setup phase. Default username: anything, Password: nospam4me Network Management http://www.pfsense.com/packages/config/assp.xml http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All/ perl-5.8.7.tbz perl 0.1 ALPHA assp.xml siproxd http://siproxd.sourceforge.net/ Siproxd is a proxy/masquerading daemon for the SIP protocol. It handles registrations of SIP clients on a private IP network and performs rewriting of the SIP message bodies to make SIP connections possible via a masquerading firewall. It allows SIP clients (like kphone, linphone) to work behind an IP masquerading firewall or router. Services http://www.pfsense.com/packages/config/siproxd.xml http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All/ siproxd-0.5.11.tbz 0.5.11 ALPHA siproxd.xml netio http://freshmeat.net/projects/netio/ This is a network benchmark for DOS, OS/2 2.x, Windows NT/2000 and Unix. It measures the net throughput of a network via NetBIOS and/or TCP/IP protocols (Unix and DOS only support TCP/IP) using various different packet sizes. Network Management http://www.pfsense.com/packages/config/netio.xml http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All netio-1.14.tbz 1.14 ALPHA netio.xml ifdepd The ifdepd daemon implements dependencies between network interfaces in a reliable fashion. If any of the source interfaces fails, ifdepd sets all destination interfaces to state down. If all source interfaces are up, ifdepd sets all destination interfaces to state up. http://hugo.bmg.gv.at Network Management http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All ifdepd-20050420.tbz 20050420 ALPHA http://www.pfsense.com/packages/config/ifdepd.xml ifdepd.xml mtr-nox11 Enhanced traceroute replacement http://www.bitwizard.nl/mtr/ Network Management http://www.pfsense.com/packages/All mtr-nox11-0.65_2.tbz 0.65_2 ALPHA ALPHA http://www.pfsense.com/packages/config/mtr-nox11.xml mtr-nox11.xml squid High performance web proxy cache. http://www.squid-cache.org/ Network 0.1 PRE-ALPHA fernando@netfilter.com.br http://www.pfsense.org/packages/All squid-2.5.13_1.tbz squid_radius_auth-1.0.8.tbz http://www.pfsense.org/packages/config/squid.xml squid.xml arpwatch Arpwatch monitors ethernet/ip address pairings. It also logs certain changes to syslog. http://www-nrg.ee.lbl.gov/ Security http://www.pfsense.com/packages/All arpwatch-2.1.a13.tbz 2.1.a13 ALPHA http://www.pfsense.com/packages/config/arpwatch.xml arpwatch.xml arpwatch arpwatch.log powerdns PowerDNS (AKA pdns) is an advanced high performance authoritative nameserver with MANY advanced features http://www.powerdns.com/ Network Management http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-5.3-release/All powerdns-2.9.16_4.tbz 2.9.16_4 ALPHA (NO GUI) http://www.pfsense.com/packages/config/powerdns.xml powerdns.xml frickin The Frickin PPTP Proxy allows a Point-to-Point Tunneling Protocol (PPTP) client to connect to a PPTP server through Network Address Translation. http://www.placid.tv Services 1.2 ALPHA http://www.pfsense.com/packages/config/frickin.xml frickin.xml postfix Postfix mail forwarder. Forwards mail to another mail server. http://www.postfix.com/ Mail http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-5.3-release/mail postfix-1.1.12_1%2c1.tbz 1.1.12_1 ALPHA http://www.pfsense.com/packages/config/postfix.xml postfix.xml doorman http://doorman.sourceforge.net Doorman is a port knocking implementation which allows a server to run silently, invisibly, with all TCP ports closed except to those who know the secret knock. Security http://www.pfsense.com/packages/config/doorman.xml http://ftp-mirror.internap.com/pub/FreeBSD/ports/i386/packages-6.0-release/All/ doorman-0.8_1.tbz 0.8_1 ALPHA doorman.xml squidGuard High performance Web proxy Guard http://www.squidguard.org/ Network Management http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All/ squidGuard-1.2.0_1.tbz 1.2.0_1 ALPHA http://www.pfsense.com/packages/config/squidGuard.xml squidGuard.xml nmap NMap is a utility for network exploration or security auditing. It supports ping scanning (determine which hosts are up), many port scanning techniques (determine what services the hosts are offering), version detection (determine what application/service is runing on a port), and TCP/IP fingerprinting (remote host OS or device identification). It also offers flexible target and port specification, decoy/stealth scanning, SunRPC scanning, and more. Most Unix and Windows platforms are supported in both GUI and command line modes. Several popular handheld devices are also supported, including the Sharp Zaurus and the iPAQ. Security http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6-stable/All/ nmap-3.93.tbz http://www.pfsense.com/packages/config/nmap.xml 3.93 nmap.xml pfstat http://www.benzedrine.cx/pfstat.html pfstat is a small utility that collects packet filter statistics and produces graphs. Network Management http://www.pfsense.com/packages/config/pfstat.xml http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All pfstat-1.7.tbz Stable 1.7 pfstat.xml upclient http://uptimes.hostingwired.com upclient sends system uptime and status information to a server (typically uptimes.hostingwired.com) that tracks and compares uptime statistics. Miscellaneous http://www.pfsense.com/packages/config/upclient.xml http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6-stable/misc upclient-5.0.b8_2.tbz 5.0.b8_2 ALPHA upclient.xml PerUserBW Adds a per user bandwidth distribution option. Requires 0.79.4 or newer. NET http://www.pfsense.com/packages/config/per-user-bandwidth-distribution.xml 0.1 ALPHA per-user-bandwidth-distribution.xml doorman http://doorman.sourceforge.net Doorman is a port knocking implementation which allows a server to run silently, invisibly, with all TCP ports closed except to those who know the secret knock. Security http://www.pfsense.com/packages/config/doorman.xml http://www.pfsense.com/packages/All doorman-0.8_1.tbz 0.8_1 ALPHA doorman.xml quagga http://www.quagga.net/ *NO GUI* Network Management http://www.pfsense.com/packages/All quagga-0.98.5_1.tbz ALPHA 9.5 zebra http://www.zebra.org/ *NO GUI* Network Management http://www.pfsense.com/packages/All zebra-9.5.tbz ALPHA 9.5 upnp Emulates Microsoft's Internet Connection Service (ICS). It implements the UPnP Internet Gateway Device specification (IGD) and allows UPnP aware clients, such as MSN Messenger to work properly from behind a NAT firewall. http://linux-igd.sourceforge.net/ Network Management http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All linuxigd-0.92_2.tbz 1.0.5 *ALPHA* *DANGER* *MAY WRECK SECURITY, USE AT OWN RISK* http://www.pfsense.com/packages/config/upnpd.xml upnpd.xml pure-ftpd http://www.pureftpd.org/ *DO NOT RUN THIS ON A FIREWALL. USE A DEDICATED MACHINE!* Pure FTPd Server is a fast, production quality, standards-conformant FTP server based on Troll-FTPd. It has no known vulnerabilities, is trivial to set up, and is especially designed for modern kernels. Features include PAM support, IPv6, chroot()ed home directories, virtual domains, built-in 'ls', FXP protocol, anti-warez system, bandwidth throttling, restricted ports for passive downloads, an LDAP backend, XML output, and more. FTP http://www.pfsense.com/packages/config/pure-ftpd.xml http://ftp13.freebsd.org/pub/FreeBSD/ports/i386/packages-6.0-release/All pure-ftpd-1.0.20_3.tbz 1.0.20_3 Stable pure-ftpd.xml ftp pure-ftpd.log