ZoneAlarm-type firewall for Linux?
Paul Dickson
paul at permanentmail.com
Thu May 11 14:46:11 MST 2006
On Mon, 08 May 2006 23:36:26 -0700, Victor Odhner wrote:
> Is there anything available in the Linux world that
> resembles ZoneAlarm's per-application outbound
> firewall? Does iptables know what application is
> sourcing an outbound connection? Is it technically
> feasible to insert that kind of hook?
I doubt it. It's pretty much a waste of time.
You can have netfilter (iptables) log info about packets. Say anything
with a SYN set. Then have another program following that log.
I used to monitor worm activity outside my firewall, but the last two
ISPs have been blocking these ports so there's been no activity for
years. The only activity I still see is bittorent packets.
-Paul
More information about the PLUG-discuss
mailing list