ZoneAlarm-type firewall for Linux?

Paul Dickson paul at permanentmail.com
Thu May 11 14:46:11 MST 2006


On Mon, 08 May 2006 23:36:26 -0700, Victor Odhner wrote:

> Is there anything available in the Linux world that
> resembles ZoneAlarm's per-application outbound
> firewall?  Does iptables know what application is
> sourcing an outbound connection?  Is it technically
> feasible to insert that kind of hook?

I doubt it.  It's pretty much a waste of time.

You can have netfilter (iptables) log info about packets.  Say anything
with a SYN set.  Then have another program following that log.

I used to monitor worm activity outside my firewall, but the last two
ISPs have been blocking these ports so there's been no activity for
years.  The only activity I still see is bittorent packets.

	-Paul



More information about the PLUG-discuss mailing list