``Isba is a free graphical tool designed to edit IP-Filter rulesets and
remotely manage IP-Filter firewalled hosts in a production environnement.
Ruleset edition: isba displays rules in typed columns (action, options,
interface, source host or net, etc). Hosts, nets, services and interfaces
are objects that can be given names. Objects can be organized in groups
which can be used in a rule, to write, in a single line, what will be
compiled into many ipf rules.

Remote management: once your ruleset is ready, isba can upload ipf.conf
and ipnat.conf to the bastion host and reload rules in kernel, using a SSH
encrypted connection with RSA authentication. Isba can also use SSH to
download informations: current kernel rules, state table and ipfilter
logs. In an emergency case, when a ruleset behaves badly on the bastion
host, you can instantly replace it with a "pass all" or "block all"
ruleset.''

=> http://www.inc2.com/isba/


Any takers for a pkg? May need a few perl/Tk modules pkgd first...


 - Hubert

-- 
Want to get a clue on IPv6 but don't know where to start? Try this:
* Basics -> http://www.onlamp.com/pub/a/onlamp/2001/05/24/ipv6_tutorial.html
* Setup  -> http://www.onlamp.com/pub/a/onlamp/2001/06/01/ipv6_tutorial.html
Of course with your #1 IPv6 ready operating system -> http://www.NetBSD.org/