I’ve recently been doing some iptables stuff at work, and I took a look at some terminal based helpers (Jay’s Iptables Firewall and ipmenu) but honestly they’re not really that much easier than writing your own chains (or basing it off something simple).

Some more scripts:

• Ocean Park IPTABLES Firewall Example
• Technion’s iptables script
• ProjectFiles.com rc.firewall
• rcs IPTables Firewall Scripts
• Arno’s IPTABLES Firewall
• Monmotha’s IPTables Firewall
• Lutel Firewall Script – looks featureful

LinuxGuruz (how leet) has a list of IPTABLES related links (this Firewall Admins Guide to Porn is an interesting read). For log analysis, IPtables log analizer (php/perl web-based) looks pretty good.

Ref: blueflux Iptables-tutorial, FAQ: Firewall Forensics (RG’s most recent pub was a forensic analysis of slammer)