Firewall Rule Analyzer
FREEPaste your iptables, UFW, Cisco ACL or cloud security-group rules and instantly spot risky openings — internet-exposed SSH/RDP/databases, allow-all rules, cleartext services and more. Runs on our server with no external calls; your rules are analyzed in the request and never stored.
Frequently asked
Is it free?
Yes, completely free with no sign-up. Paste your rules and analyze as often as you like.
Do you store my firewall rules?
No. Rules are analyzed in the request on our server and discarded — nothing is written to disk or database, and nothing is sent to any third party.
Which rule formats are supported?
iptables, UFW, Cisco-style ACLs, and generic "allow tcp 22 from 0.0.0.0/0" lines. The format is auto-detected per line, so you can mix them.
What does it check for?
Internet-exposed sensitive services (SSH, RDP, databases, Redis, Elasticsearch, SMB…), allow-all rules, cleartext protocols, overly wide port ranges, duplicate rules, and a missing default-deny policy — each with a severity and a recommended fix.