Firetest firewall testing suite

Sourceforge project page

Firetest is a set of python scripts that assist in load tests of firewalls.

They run a series of load tests (partially using third party OS tools) against a firewall, changing the firewall rule set (currently iptables is supported) and other conditions each run. Then other scripts parse the output data files and produce nice graphs of the measured effects on latency and throughput via GnuPlot.

Main goal is to test the scalability of stateful firewall software with respect to high connection counts and high amounts of rules. The project was started and used at the University of Ulm, where it helped in the decision to switch from CheckPoint to IPTables. (We have to handle 9000 hosts with 600 MBit Traffic here.)

The test scripts work and are useful, but currently, configuration is done by source editing, and there's no GUI yet. Also, Documentation is sparse. The next step to go is to develop an unique interface for the different tests, to be able do put frontends (config-file or GUI based) around them.

The Projekt is written in Python, and was started at the University of Ulm. As my contract there ended, I got the permission to release it under GPL, and now mainain it as a sourceforge project.

Project generously hosted by SourceForge.net Logo