038f025220
* Revert "Revert "Add initial rough version of port based rules (#874)" (#888)"
This reverts commit 58e48457ad.
* gate port rule depending on kernel version
* fix version comparision
* allow for no port-related values when creating rule event
* Fix struct accessor
* fix getting port type in rule list component
* small fix
* oops
* hide port-related display on disabled port-rules
* Gate table headers
* update port-based rule for boot-up only and update ui
* fix tests
* fix disable button
* Minor UI and wording update
* Add firewall functional tests
* fix functional testing
* add debug log for functional debugging
* fix
* Fix functional testing by preventing overlap
* remove sudo from functional firewall tests
* fix error message
* fix firewall ci
* re-adding sudo to functional test
* fix expected results in functional test
* Apply suggestions
* Update apps/fz_http/lib/fz_http_web/live/rule_live/rule_list_component.html.heex
Signed-off-by: Jamil <jamilbk@users.noreply.github.com>
Co-authored-by: Jamil <jamilbk@users.noreply.github.com>
Firezone is a self-hosted VPN server and Linux firewall
- Manage remote access through an intuitive web interface and CLI utility.
- Deploy on your own infrastructure to keep control of your network traffic.
- Built on WireGuard® to be stable, performant, and lightweight.
Get Started
Follow our deploy guide to install your self-hosted instance of Firezone.
Or, if you're on a supported platform, try our one-line install script:
sudo -E bash -c "$(curl -fsSL https://github.com/firezone/firezone/raw/master/scripts/install.sh)"
Using Firezone for your team? Take a look at our business tier.
Features
- Fast: Uses WireGuard® to be 3-4 times faster than OpenVPN.
- SSO Integration: Authenticate using any identity provider with an OpenID Connect (OIDC) connector.
- No dependencies: All dependencies are bundled thanks to Chef Omnibus.
- Simple: Takes minutes to set up. Manage via a simple CLI.
- Secure: Runs unprivileged. HTTPS enforced. Encrypted cookies.
- Firewall included: Uses Linux nftables to block unwanted egress traffic.
Anti-features
Firezone is not:
- An inbound firewall
- A tool for creating mesh networks
- A full-featured router
- An IPSec or OpenVPN server
Documentation
Additional documentation on general usage, troubleshooting, and configuration can be found at https://docs.firezone.dev.
Get Help
If you're looking for help installing and configuring Firezone, we're happy to help:
- Discussion Forums: ask questions, report bugs, and suggest features
- Community Slack: join discussions, meet other users, and meet the contributors
- Email Us: we're always happy to chat
Package Repository
Package repository hosting is graciously provided by Cloudsmith. Cloudsmith is the only fully hosted, cloud-native, universal package management solution, that enables your organization to create, store and share packages in any format, to any place, with total confidence.
Developing and Contributing
See CONTRIBUTING.md.
Security
See SECURITY.md.
License
See LICENSE.
WireGuard® is a registered trademark of Jason A. Donenfeld.