Developing an Open-Source Packet Filtering and Application Firewall for final year project

I have decided build an open source firewall in linux environment. I have exactly one year to complete this project. The firewall will be a stateful packet filtering firewall working at network, transport and application layers. I would also be provided log analysis features.

Some of the network layer feat开发者_JS百科ures are as follows:

1. Stateful Packet Inspection: Tracking each connection and filtering packets by breaking them into headers and data.

2. Port-scan detection

3. DoS and DDoS Protection

4. SYN/ICMP Flood Protection

5. Anti-spoofing Protection

For application layer features I may decide to provide antivirus and antispam filters.

What I want to know is whether this is a good enough project or put in other words, is it a worthwhile project to undertake?

Thanx in advance :)

What's wrong with existing packages, such as iptables?

Antivirus/antispam functionality is usually provided by separate packages and is not a part of the firewall. This is not the Windows world, where there is one "security suite". In Linux, you run a firewall; you run a separate antivirus scanner (or not), and you run an antispam filter plugin on your MTA.

I think writing a new system from scratch is relatively pointless, unless you have already studied the existing alternatives in depth and concluded all of them are architecturally lacking and can not be salvaged. To do something worthwhile, it would be much better to identify something an existing popular package lacks, and then contribute that feature to the package.