speatzle/nfsense
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity Actions
Linux Based Firewall using nftables https://nfsense.net
602 commits 5 branches 0 tags 2.3 MiB
  • Rust 60.3%
  • Vue 22.4%
  • TypeScript 10.8%
  • CSS 3.3%
  • Shell 3%
  • Other 0.2%
Find a file
Exact
adroslice 7b1a542bd5
Some checks failed
/ api-build (push) Successful in 10m35s
Details
/ client-build (push) Failing after 7s
Details
refactor: remove file-based routing in favor of hand-crafted routes
2026-05-01 10:12:32 +02:00
.forgejo/workflows Fix image Artifacts, take 2 2026-02-11 22:21:52 +01:00
.zed build: removed unneeded deps and replaced eslint with oxc 2026-04-22 20:25:50 +02:00
client refactor: remove file-based routing in favor of hand-crafted routes 2026-05-01 10:12:32 +02:00
images Add Basic README.md 2025-09-21 01:06:47 +02:00
mkosi build client with build-only 2026-02-11 21:20:52 +01:00
src Dont overwrite config if it already exists 2026-02-11 21:20:17 +01:00
.gitignore Add Image generation. 2026-02-01 17:37:07 +01:00
build-image.sh Imutable build without root and working Updates. 2026-02-09 23:42:50 +01:00
Cargo.lock Implement Serving the frontend 2026-02-01 23:25:30 +01:00
Cargo.toml Add Update checking 2026-02-06 19:57:17 +01:00
install.sh Add VRF Management 2025-10-03 22:43:54 +02:00
LICENSE.md Create LICENSE.md 2023-03-01 11:10:47 +01:00
README.md Add Basic README.md 2025-09-21 01:06:47 +02:00

README.md

nfSense

A Linux Based Firewall with nftables

Screenshot of the Forward Rules Table

Development Installation

You can install nfSense for development on a Fresh Debian Trixie System by running the following commands:

cd /opt
git clone https://github.com/speatzle/nfsense.git
cd nfsense
./install.sh

After the Installation is complete you will need to login to the web interface at https://:8080 with the user root and password nfsense. Configure the Network interfaces, your default route and apply the Changes. Otherwise there will be no network connectivity after reboot.

Features

  • Firewall and NAT Rules with Reusable Service and Address Objects Based on nftables
  • Interface and Route Configuration
  • Builtin DHCP, DNS and NTP Servers
  • Wireguard VPN
  • A Commit Based Configuration System with Fast Commits and Rollbacks on Failure, saved to disk in JSON
  • Intuitive Web Interface
  • Written in Memory Safe Rust

Note: nfSense is currently in an early alpha state and is not ready for production use.