• Autodetection of the IP Address and Netmask of each interface.
• Blocking of NetBIOS, NetBUS, Back Orifice and Samba attacks.
• Protection against IP Spoofing Attacks.
• Logging of DENY packets.
• Manipulation of TOS bits of the packet for optomizing transfers. You must have CONFIG_IP_ROUTE_TOS enabled in your kernel for this to be effective.
• Masquerading support is decided during install.
• Your own custom rules can be added to the pmfirewall.rules.local file.

• Version 1.1 has an error which will cause masquerading to be enabled even if you choose not to. Please upgrade to the most current version.
• Version 1.1.2 has a problem with enabling pmfirewall before pcmcia interfaces are activated. Please upgrade.
  
• Version 1.1.4: PROBLEM:
  The custom ports opened at the following line of the install are affected.
  
  "Are there any other ports you wish to open to the outside? (y/N): "
  
  During the IP specification section if you just hit enter to allow connections from anywhere it will instead only allow connections from your specific subnet. Fix: Edit the pmfirewall.rules.local file by hand and look for the "#CUSTOM" line. Then in each line after that, replace every instance of $OUTERNET with $REMOTENET.

This file distributed without warranty of any sort. If you get hacked it is your own fault for being stupid enough to put a server on the Internet when you know how unsafe it can be. :-)

NOTE: The mailing list is current offline until further notice.