Clone or download
Pull request Compare This branch is 160 commits ahead, 1 commit behind kkovaacs:master.
Szilárd Pfeiffer
Szilárd Pfeiffer Merge branch '7.0.1-alpha1'
Latest commit b63e204 Oct 11, 2018
Permalink
Failed to load latest commit information.
.circleci cricleci: Initial commit Sep 28, 2018
ci @ 029507f cricleci: Initial commit Sep 28, 2018
debian debian: Extended tar ignore with generated and VCS files Sep 21, 2018
doc Initial commit of version 6.0.12 May 10, 2018
lib Initial commit of version 7.0.1~alpha1 Sep 21, 2018
libproxy Initial commit of version 7.0.1~alpha1 Sep 21, 2018
modules Initial commit of version 7.0.1~alpha1 Sep 21, 2018
munin_plugins Initial commit of version 7.0.1~alpha1 Sep 21, 2018
nagios_plugins Initial commit of version 7.0.1~alpha1 Sep 21, 2018
pylib Initial commit of version 7.0.1~alpha1 Sep 21, 2018
rpm Merge branch '7.0.1-alpha1' Oct 11, 2018
scripts Initial commit of version 6.0.11 Dec 7, 2017
tests tests: Remove unused tools directory and its content Sep 21, 2018
zorp gperf: Remove unnecessary gperf dependency Sep 21, 2018
zorpctl Initial commit of version 7.0.1~alpha1 Sep 21, 2018
zorpctl_in_cc Initial commit of version 7.0.1~alpha1 Sep 21, 2018
.gitignore travis: Added Travis YML configuration file. Jan 2, 2018
.gitmodules cricleci: Initial commit Sep 28, 2018
.travis.yml travis: Add Coverity-Scan support. Jan 2, 2018
AUTHORS Initial import of zorp_3.9.0.tar.gz Apr 27, 2011
BUGS Initial commit of version 6.0.12 May 10, 2018
COPYING Initial commit of version 6.0.12 May 10, 2018
INSTALL Initial commit of version 6.0.8 Oct 4, 2016
Makefile.am debian: Removed unnecessary Debian related files. Sep 21, 2018
README Merge branch '7.0.1-alpha1' Oct 11, 2018
README.md github: Added Travis and Coverity-Scan state icons Jan 2, 2018
VERSION Initial commit of version 7.0.1~alpha1 Sep 21, 2018
WHATIS.TXT Initial import of zorp_3.9.0.tar.gz Apr 27, 2011
configure.ac Merge branch '7.0.1-alpha1' Oct 11, 2018
dist.conf Initial commit of version 7.0.1~alpha1 Sep 21, 2018
libzorp.pc.in Initial commit of version 6.0.11 Dec 7, 2017
libzorpproxy.pc.in Initial commit of version 3.9.6. Aug 5, 2013
moduledist.conf.in Initial commit of version 6.0.11 Dec 7, 2017

README.md

Travis Build Status Coverity Scan Build Status HitCount

This is Zorp, welcome.

Zorp is a new generation proxy firewall suite making it possible to finetune proxy decisions (with its built in script language), to fully analyze complex protocols (like SSH with several forwarded TCP connections), and to utilize outband authentication techniques (unlike common practices where proxy authentication had to be hacked into the protocol).

Quickstarting Zorp

After installing zorp (described in the file INSTALL), you have to come up with a policy.py file, which may not be the easiest thing to do at first time.

A sample policy file is provided named /etc/zorp/policy.py.sample to be renamed to /etc/zorp/policy.py after local modifications are applied.

You will need to modify the zone declaration (the beginning of the file), to fit your network architecture. A zone in Zorp is a IP address range, and is the basis of access control. Each zone may define the services which is allowed to go into, and out of the zone.

As your policy file is in place, you'll need to add a new entry to your $prefix/etc/zorp/instances.conf file, like this:

excerpt from /etc/zorp/instances.conf

zorp_plug --policy /usr/local/etc/zorp/policy-plug.py

The first word is the instance name to start, and the rest are the parameters to add to the zorp command line.

If you are done, you can now try to start your first Zorp instance using zorpctl:

zorpctl start zorp_plug

if you leave the instance name empty, all instances are started.

Documentation

You can find the Zorp Tutorial in doc/zorp-tutorial.html which describes the GPLd version of Zorp, and a more comprehensive documentation for the commercial version which is available at

http://www.balasys.hu/documentation/