Download Gibraltar 2.6

The Gibraltar developers have released a new version with 2.6 as the version number. Gibraltar is intended to be used as a security gateway and contains, among other things, a firewall with functions such as stateful and deep packet inspection, a VPN gateway with which secure connections can be set up via ipsec and pptp, a spam and anti-virus filter that allows unwanted data to pass out. and a traffic shaper with which outgoing data traffic can be prioritized. Gibraltar can be used at home without licensing fees. However, a license must be purchased for commercial use, and you can opt for a complete one appliance. For more information, we refer you to this page. The list of Gibraltar 2.6 modifications looks like this:

Version 2.6:

This is a feature release focusing on changes on the interface with few modifications at the base system. This release received the highest amount of in-house testing so far and is thus to be considered stable during the upcoming developments for Gibraltar 3.x.

• New web interface module for configuring snort as IDS, which is now officially supported. Please note that we strongly recommend registering with VRT to receive an update code (in either of the free or commercial variants) and that the shipped community rules should only be used when registering is, for some reason, not possible in the specific case.
• Puresight is now better supported in its Enterprise version.
• SSL Explorer (TM) integration has been changed slightly so that plugins can now be installed via its normal administration interface.
• Substantially improved traffic shaping by re-ordering iptables marking rules and improving pre-defined traffic classes. If traffic shaping is in use, we strongly recommend upgrading to this release.
• New extensive connection-manager script to support multiple uplinks and alternative IPSec tunnels (currently for fail-over with partial load-balancing support).
• Installed hostapd and added web interface support for configuring access point functionality (focussed on madwifi supported cards at the moment).
• Virus scanning for HTTP, POP3, and FTP is now possible without requiring a hard disk due to tweaks in config files and careful management of a temporary /var storage area (such as tmpfs).
• A new spamassassin module for classifying languages ​​has been included and can be configured using the web interface.
• Also installed madwifi-tools and updated kernel modules to version 0.9.4 for better access point capabilities.
• Updated ntop to version 3.2.
• Updated ppp to version 2.4.4 with additional patch for “ifname” option so that multiple PPP connections can be supported easier (eg for multiple concurrent uplinks).
• Updated snort to version 2.7.0 and installed its new dependency libpng12.
• Updated djbdns to fix resolving from some broken DNS servers.
• Updated HAVP to version 0.88.
• Updated tor to version 0.1.2.18.
• Some minor changes to boot and init scripts to better support our upcoming GSG500 that does not feature any usual console support but has optional WLAN (access point) support.

ATTENTION: Users of GSG1500, GSG3000 and GSG3600 should wait executing the updates to 2.6 until we have tested some special cases in update procedure!!!