WaterRoof firewall manager

Posted Jan 11th 2008 9:00AM by Mat Lu
Filed under: OS, Freeware, Internet Tools, UNIX / BSD

Lots of people know that OS X has a very powerful stateful packet inspection firewall (ipfw) under the shiny hood of the Sharing Preference Pane thanks to its UNIX underpinnings, but actually understanding and controlling that power is something else entirely. Perhaps a bit lost in the rush to Christmas Macworld published a nice guide to configuring the Leopard firewall that's definitely helpful in getting a bit clearer about what's going on. But if you really want to dig into the options you've got to go deeper, and if you don't have the command line chops to set it up yourself, you'll want to check out the open-source WaterRoof from hanynet.com.

Basically, WaterRoof is the graphical front end to ipfw that Apple left out. As the developer notes, its features "include dynamic rules, bandwidth management, NAT configuration and port redirection, pre-defined rule sets and a wizard for easy configuration." Particularly if you're trying to use a Mac as a gateway or router and need more sophistication than the built-in Internet Sharing provides, WaterRoof can really simplify matters.

WaterRoof is a free download (donations requested) with separate versions for Tiger and Leopard. The same developer also has a simplified version with many fewer features called NoobProof.

Tags: firewall, ipfw, NoobProof, WaterRoof

Reader Comments (Page 1 of 1)

1

1-11-2008 @ 9:39AM

Joshua Ochs said...

FYI, ipfw is not used for Leopard's "Application Firewall", so making changes in the Security preference pane will not affect it. You can use both, but beware that you don't confuse yourself - I know the pain of making changes in one firewall and missing the other (commence the gnashing of teeth).

Having mucked about with ipfw the last few days, I can recommend WaterRoof, but make sure you have a good grasp of ipfw - it's like a lot of UNIX - very powerful, very flexible, but it can be very tricky to get right.

Reply

2

1-11-2008 @ 9:51AM

Speddy said...

This software's been out for sometime.

I prefer it, and using LittleSnitch to monitor what is trying to get out (let alone in).

Reply

3

1-11-2008 @ 10:20AM

john_a said...

I had a short write-up of WaterRoof here:

http://macsecure.com/2007/11/09/managing-the-leopard-firewall-with-waterroof/

Reply

Mac News

WWDC (250)

.Mac (57)

Accessories (635)

Airport (74)

Analysis / Opinion (1329)

Apple (1637)

Apple Corporate (555)

Apple Financial (187)

Apple History (45)

Apple Professional (54)

Apple TV (160)

Audio (446)

Bad Apple (118)

Beta Beat (149)

Blogging (84)

Bluetooth (16)

Bugs/Recalls (56)

Cult of Mac (869)

Deals (214)

Desktops (115)

Developer (252)

Education (98)

eMac (10)

Enterprise (138)

Features (396)

Freeware (381)

Gaming (361)

Graphic Design (31)

Hardware (1281)

Holidays (37)

Humor (576)

iBook (65)

iLife (234)

iMac (184)

Internet (325)

Internet Tools (1309)

iTS (967)

iTunes (796)

iWork (21)

Leopard (367)

Mac mini (112)

Mac Pro (53)

MacBook (202)

MacBook Air (79)

Macbook Pro (220)

MobileMe (16)

Multimedia (439)

Odds and ends (1437)

Open Source (277)

OS (910)

Peripherals (208)

Podcasting (182)

Podcasts (89)

Portables (197)

PowerBook (135)

PowerMac G5 (50)

Retail (577)

Retro Mac (48)

Rig of the Week (42)

Rumors (629)

Software (4304)

Software Update (406)

Steve Jobs (252)

Stocking Stuffers (50)

Surveys and Polls (97)

Switchers (112)

The Woz (34)

TUAW Business (235)

Universal Binary (281)

UNIX / BSD (61)

Video (902)

Weekend Review (81)

WIN Business (47)

Wireless (83)

Xserve (39)

iPhone/iPod News

iPhone (1487)

iPod Family (2024)

App Store (17)

SDK (14)

Mac Events

One More Thing (27)

Liveblog (1)

Other Events (226)

Macworld (489)

Mac Learning

AppleScript (2)

Ask TUAW (101)

Blogs (85)

Books (26)

Books and Blogs (62)

Cool tools (443)

Hacks (459)

How-tos (482)

Interviews (43)

Mods (185)

Productivity (586)

Reviews (107)

Security (153)

Terminal Tips (58)

Tips and tricks (563)

Troubleshooting (166)

TUAW Features

iPhone 101 (26)

TUAW Labs (3)

Blast From the Past (17)

TUAW Tips (141)

Flickr Find (34)

Found Footage (80)

Mac 101 (88)

TUAW Interview (31)

Widget Watch (198)

The Daily Best (1)

TUAW Faceoff (4)

RESOURCES

• Send us news tips
• Contact Us
• Advertise
• Corrections?
• Problems?

RSS NEWSFEEDS

• Main RSS Feed
• Feeds by category

Sponsored Links

Advertise on TUAW

Featured Galleries

 

Most Commented On (7 days)

• Canadian iPhone: Consumer Revolt against Rogers tariffs (123)
• iPhone 101: Eight 3G iPhone Plan Pricing Details You Need to Know (120)
• TUAW Poll: What are you doing with your original iPhone? (92)
• Me.com email addresses online? (83)
• Doin' the wacky AT&T math (76)
• AT&T posts iPhone 3G information (72)
• International iPhone pricing guide (62)
• Are iPhone app devs getting a raw deal? (61)
• 10.5.4 is in Software Update Now! (55)
• Rogers announces iPhone rates in Canada (54)

Recent Comments

• Davy Fields on Mac 101: Capture sharp screenshots
• Shunnabunich on Walt Mossberg on switching from Windows to Mac
• Mike on Apple Expo '08 dates announced, events detailed
• robb on TrailRunner 1.7 Released
• donmontalvo on Mac 101: Capture sharp screenshots
• Igor on International iPhone pricing guide
• jimeh on Adobe Reader 9 released
• dagamer34 on Tap Tap Revolution to be sold by Tapulous, called Tap Tap Revenge
• mark on Tap Tap Revolution to be sold by Tapulous, called Tap Tap Revenge
• Dan Woods on Axel Springer AG moves to Mac

More Apple Analysis

• AAPL on BloggingStocks The Apple category feed from BloggingStocks.com
• AAPL Quote, News & Summary The AAPL financials page from AOL Money and Finance
• iPhone analysis from BloggingStocks iPhone tag feed from BloggingStocks
• Macintosh news and reviews on Download Squad The Macintosh category feed from Download Squad

More from AOL Money and Finance

• Stock Screener
• Stock Quotes
• DJIA
• AMT
• Auto Loans
• Banking
• Car Insurance
• Checking Account
• Credit Cards
• Credit Reports
• Debt Management
• Dow Jones Industrial Average
• Earnings
• GOOG
• Health Insurance
• Home Insurance
• Identity Theft
• Income Tax Basics
• Insurance
• Life Insurance
• Loans
• Money
• Mortgages
• Personal Loans
• Recession
• Refinancing
• Retirement
• Savings Account
• Small Business
• Stock Charts
• Stock Ticker
• Taxes
• Tech News

Weblogs, Inc. Network

• Autos
  • Autoblog
  • AutoblogGreen
  • Autoblog Spanish
  • Autoblog Chinese
  • Autoblog Simplified Chinese
• Technology
  • Download Squad
  • Engadget
  • Engadget HD
  • Engadget Mobile
  • Engadget Chinese
  • Engadget Simplified Chinese
  • Engadget Japanese
  • Engadget Spanish
  • Engadget Polska
  • Switched
  • TUAW (Apple)
• Lifestyle
  • AisleDash
  • DIY Life
  • Gadling
  • Green Daily
  • Luxist
  • ParentDish
  • Slashfood
  • Styledash
  • That's Fit
• Gaming
  • Joystiq
  • DS Fanboy
  • Massively
  • Nintendo Wii Fanboy
  • PS3 Fanboy
  • PSP Fanboy
  • WoW Insider
  • Xbox 360 Fanboy
  • Big Download
• Entertainment
  • Cinematical
  • TV Squad
• Finance
  • BloggingBuyouts
  • BloggingStocks
  • WalletPop
• Sports
  • FanHouse Main
  • NFL
  • NBA
  • MLB
  • NCAA Football
  • NCAA Basketball
  • NASCAR
  • NHL
  • Golf
  • Fantasy Football
• Also on AOL
  • African-American Culture
  • Cars
  • Games
  • Maps
  • Money
  • Movies
  • Music
  • News
  • Radio
  • Sports
  • Television
  Travel

More on AOL: Money, Investing, Bonds, Broker Center, Currency, ETF Center, Futures, International Markets, Mutual Fund Center, Stock Charts, Stock Quotes, Stock Screener, Portfolios, Personal Finance, Personal Loans, Finance Calculators, Money Basics, Retirement, Taxes, Market News, Small Business

All contents copyright © 2003-2008, Weblogs, Inc. All rights reserved

The Unofficial Apple Weblog (TUAW) is a member of the Weblogs, Inc. Network. Privacy Policy, Terms of Service, Notify AOL