FireFly - Dynamic SPI Firewall
Embedded IP Packet-Filtering and Stateful Inspection Firewall
FireFly is a high performance, embedded IP packet-filtering firewall implementation. It enables filtering based on a wide variety of criteria such as source and destination IP address, TCP/UDP ports, protocol type, incoming and outgoing interfaces and many other packet fields. Its core engine permits or denies packets from passing through it based on pre-defined and easily configurable policies that may be specified using rules files, a command line interface or programmatically using its flexible APIs. FireFly includes hooks for dynamic firewalling and stateful inspection. Its small footprint, low latency and robustness make it the firewall of choice in embedded networking applications and an ideal perimeter security complement to network security technologies such as IPsec, SSH and SSL.