You can try www.shorewall.net
.. its iptables front end ...
If you need good firewall setup I would look into these
Snort +Snortsam + OinkMaster + Iptables
Snort => Analyzise the traffic and alert the snortsam,
Snortsam => Base on the snort alert it block the ip address for certain amount of time period.
Oinkmaster => Its little perl script which update the snort rules
Iptables is linux based firewall, which is pretty decent
hope that helps