Projects / Borderline


Borderline is a firewall generator. It takes a generic rule specification as input and generated an highly optimized firewall. It features IPv6 rule generation, support for multiple interfaces, and integrated support for network zones. It currently only supports firewall generation for Linux 2.6 (netfilter).

Operating Systems

Recent releases

  •  12 Mar 2010 20:36

    Release Notes: This release contains improvements to the rule optimization pass and fixes a potentially serious bug in rule merging. TCP flag match has been added in order to improve packet validation.

    •  09 Feb 2010 19:49

      Release Notes: The language has been stabilized and many bugs have been fixed. An option to auto-generate zone files has been added, and the rule framework has been reorganized to ease configuration. This version is ready to be tested in real production environments.

      •  07 Oct 2009 21:18

        Release Notes: This release fixes a bug in the parser that rendered the system unusable. The state match has been improved, and the rule framework has been improved slightly.

        •  06 Oct 2009 08:22

          Release Notes: This release is not production ready. It includes a framework for specifying rules and policies to ease firewall setup, init.d scripts, and the generator itself.


          Project Spotlight


          A Fluent OpenStack client API for Java.


          Project Spotlight

          TurnKey TWiki Appliance

          A TWiki appliance that is easy to use and lightweight.