WaterRoof firewall manager

Filed under: OS, Freeware, Internet Tools, UNIX / BSD

WaterRoof firewall manager

by Mat Lu on Jan 11th 2008 at 9:00AM

Lots of people know that OS X has a very powerful stateful packet inspection firewall (ipfw) under the shiny hood of the Sharing Preference Pane thanks to its UNIX underpinnings, but actually understanding and controlling that power is something else entirely. Perhaps a bit lost in the rush to Christmas Macworld published a nice guide to configuring the Leopard firewall that's definitely helpful in getting a bit clearer about what's going on. But if you really want to dig into the options you've got to go deeper, and if you don't have the command line chops to set it up yourself, you'll want to check out the open-source WaterRoof from hanynet.com.

Basically, WaterRoof is the graphical front end to ipfw that Apple left out. As the developer notes, its features "include dynamic rules, bandwidth management, NAT configuration and port redirection, pre-defined rule sets and a wizard for easy configuration." Particularly if you're trying to use a Mac as a gateway or router and need more sophistication than the built-in Internet Sharing provides, WaterRoof can really simplify matters.

WaterRoof is a free download (donations requested) with separate versions for Tiger and Leopard. The same developer also has a simplified version with many fewer features called NoobProof.

Tags: firewall, ipfw, NoobProof, WaterRoof

Reader Comments (Page 1 of 1)

Joshua Ochs said 9:39AM on 1-11-2008

FYI, ipfw is not used for Leopard's "Application Firewall", so making changes in the Security preference pane will not affect it. You can use both, but beware that you don't confuse yourself - I know the pain of making changes in one firewall and missing the other (commence the gnashing of teeth).

Having mucked about with ipfw the last few days, I can recommend WaterRoof, but make sure you have a good grasp of ipfw - it's like a lot of UNIX - very powerful, very flexible, but it can be very tricky to get right.

↓↑report

Speddy said 9:51AM on 1-11-2008

This software's been out for sometime.

I prefer it, and using LittleSnitch to monitor what is trying to get out (let alone in).

↓↑report

john_a said 10:20AM on 1-11-2008

I had a short write-up of WaterRoof here:

http://macsecure.com/2007/11/09/managing-the-leopard-firewall-with-waterroof/

↓↑report

Tip of the Day

To find out what version of Mac OS you are running, go to the Apple logo in the top left corner, click it and choose About This Mac. From that window you will see the version number, processor, memory and chosen startup disk. Clicking Software Update will check for updates, and More Info... will open up an extensive list of everything on your machine.

Learn More

TUAW flickr Pool

www.flickr.com

Advertise with us. (Learn more)

Featured Galleries

TUAW bloggers (30 days)

#	Blogger	Posts	Cmts
1	Steven Sande	41	10
2	Mel Martin	32	0
3	Victor Agreda, Jr.	30	8
4	Michael Rose	28	29
5	Mike Schramm	28	1
6	Dave Caolo	22	0
7	Brett Terpstra	17	11
8	David Winograd	16	0
9	Erica Sadun	14	2
10	Megan Lavey	14	5
11	Robert Palmer	13	3
12	Chris Rawson	12	0
13	Sang Tang	10	1
14	Tim Wasson	9	0
15	Michael Jones	7	0
16	Christina Warren	7	23
17	Casey Johnston	6	0
18	Jason Clarke	6	1
19	Mat Lu	5	0
20	Cory Bohon	4	0

More Apple Analysis

AAPL on BloggingStocks The Apple category feed from BloggingStocks.com
AAPL Quote, News & Summary The AAPL financials page from AOL Money and Finance
iPhone analysis from BloggingStocks iPhone tag feed from BloggingStocks
Macintosh news and reviews on Download Squad The Macintosh category feed from Download Squad

The Unofficial Apple Weblog (TUAW)

WaterRoof firewall manager

Related Articles From The Unofficial Apple Weblog