m0n0wall utilities

Update (April 29, 2006)

New prebuilt 1.22 images are available.

About

Here are some utilities that can be used to enhance m0n0wall, a free firewall package based on FreeBSD.

m0n0-inst-modules (README) is a Perl script that updates m0n0wall iso images with one or more "modules". Both .iso images and raw compact flash / hard disk images are supported.

m0n0-bigfwupd (README) is a module that changes two m0n0wall 1.1 files in order to support firmware upgrades of images up to 10MB in size.

m0n0-dropbear-ssh (README) is a module that adds basic ssh access to m0n0wall. It's based on Dropbear, a small SSH server. It adds less than 200 KB.

m0n0-shellpack (README) is a module that adds a bunch of shell related utilities to m0n0wall.

m0n0-ssh (README) is a module that adds basic ssh access to m0n0wall. It's based on OpenSSH and is therefore relatively large (a little over 1MB).

For the impatient

If you just want to install m0n0-dropbear-ssh and m0n0-shellpack, do the following:

Download m0n0-utils.tgz on a FreeBSD 4.x system with perl, mkisofs and vnconfig installed.
Unpack it: tar xfz m0n0-utils.tgz
Update the m0n0 image: m0n0-inst-modules/m0n0-inst-modules -m 14k cdrom-1.1.iso mym0n0.iso m0n0-dropbear-ssh m0n0-shellpack (this works for other images formats as well).
Burn mym0n0.iso to a cdrom, or transer the image to a CF card
Boot your m0n0wall with it
ssh m0n0wall-ip (user=root, password=<m0n0 admin password>)

If you want to update a m0n0wall 1.1 CF/IDE image through the web interface with the "upgrade firmware" option and your image exceeds 6MB (the above will keep it just below 6MB), you will first need to enable larger firmware upgrades:

Create an image with just the m0n0-bigfwupd module and upgrade your m0n0wall with it.
Create an image with all the desired modules, including m0n0-bigfwupd and upgrade your m0n0wall once more.

M0n0wall 1.2 supports larger images out of the box.