speatzle/nfsense
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity Actions
Linux Based Firewall using nftables https://nfsense.net
663 commits 6 branches 0 tags 3.1 MiB
  • Rust 58.9%
  • Vue 22.1%
  • TypeScript 12.6%
  • CSS 3.3%
  • Shell 2.9%
  • Other 0.2%
Find a file
Exact
Samuel Lorch 103619df6d
Some checks failed
/ api-build (push) Successful in 3m19s
Details
/ client-build (push) Failing after 5s
Details
feat: setup varlink, init nfctl
2026-06-12 23:08:17 +02:00
.forgejo/workflows add non-free-firmware to image build 2026-05-30 20:58:43 +02:00
.zed build: removed unneeded deps and replaced eslint with oxc 2026-04-22 20:25:50 +02:00
client feat: Add "Add" Actions to Selects 2026-06-12 22:09:37 +02:00
images Add Basic README.md 2025-09-21 01:06:47 +02:00
mkosi feat: setup varlink, init nfctl 2026-06-12 23:08:17 +02:00
src feat: setup varlink, init nfctl 2026-06-12 23:08:17 +02:00
.gitignore Add Image generation. 2026-02-01 17:37:07 +01:00
build-image.sh build: Skip qcow2 hash for now 2026-05-31 16:27:40 +02:00
Cargo.lock feat: setup varlink, init nfctl 2026-06-12 23:08:17 +02:00
Cargo.toml feat: setup varlink, init nfctl 2026-06-12 23:08:17 +02:00
install.sh Add VRF Management 2025-10-03 22:43:54 +02:00
LICENSE.md Create LICENSE.md 2023-03-01 11:10:47 +01:00
README.md Add Basic README.md 2025-09-21 01:06:47 +02:00

README.md

nfSense

A Linux Based Firewall with nftables

Screenshot of the Forward Rules Table

Development Installation

You can install nfSense for development on a Fresh Debian Trixie System by running the following commands:

cd /opt
git clone https://github.com/speatzle/nfsense.git
cd nfsense
./install.sh

After the Installation is complete you will need to login to the web interface at https://:8080 with the user root and password nfsense. Configure the Network interfaces, your default route and apply the Changes. Otherwise there will be no network connectivity after reboot.

Features

  • Firewall and NAT Rules with Reusable Service and Address Objects Based on nftables
  • Interface and Route Configuration
  • Builtin DHCP, DNS and NTP Servers
  • Wireguard VPN
  • A Commit Based Configuration System with Fast Commits and Rollbacks on Failure, saved to disk in JSON
  • Intuitive Web Interface
  • Written in Memory Safe Rust

Note: nfSense is currently in an early alpha state and is not ready for production use.