Open MicroPIC appliances have two built-in Ethernet interfaces and make an excellent green platform for distributed Shorewall firewall services. Shorewall (Shoreline Firewall) is a configuration manager for Netfilter and provides rule-based firewall services for the MicroPIC. A MicroPIC with Shorewall can be used as a dedicated firewall system, a multifunction gateway/router/server and has connection state tracking capabilities. Shorewall website
Shorewall distributions can be deployed using Ubuntu package managers or can be configured from source. Installation and configuration is easy and the appliances can be modified for distributed computing environments.
Installing Shorewall on a MicroPIC
sudo apt-get install shorewall
Shorewall Configuration
Copy default configuration files to /etc/shorewall:
cp /usr/share/doc/shorewall/default-config/* /etc/shorewall
Modify the zones, interfaces, policy and rules files following the Shorewall how-to guides: http://shorewall.net/shorewall_quickstart_guide.htm#Guides
vi /etc/shorewall/zones
vi /etc/shorewall/interfaces
vi /etc/shorewall/policy
vi /etc/shorewall/rules
Enable Shorewall on Startup
vi /etc/default/shorewall
change:
startup = 0
to
startup = 1
Start Shorewall
/etc/init.d/shorewall start