FireHOL

FireHOL is a firewall and traffic shaping toolset for Linux. It provides stateful packet filtering on top of iptables and TC-based bandwidth shaping, so firewall rules and quality-of-service policies can be expressed in plain configuration files instead of low-level commands.

A single configuration handles combined IPv4 and IPv6 rules. The firehol command starts and manages the firewall, while the fireqos command applies traffic shaping. Settings live in /etc/firehol/firehol.conf and /etc/firehol/fireqos.conf, and many common network services are supported out of the box, with man pages and examples included.

FireHOL and FireQOS are released under the GNU General Public License, version 2 or later. They install on Linux from source using GNU Autotools or from distribution packages, and the binaries are SysVInit and systemd compatible for running at boot.