Application Firewall

solarwind · 2008-09-14 04:29:25

On Windows, I have used application firewalls like ZoneAlarm which can set internet access on a per-application basis. You can control exactly how what internet access an application gets (access to net, trusted, server to net, trusted for example).

Is there anything like this for Linux at all? At least is there anything I can use to prevent certain applications from accessing the internet?

Or is there a way to make another user and disable ALL internet access for that user? I'm trying to run a program and I do NOT want to give it internet access. Actually several programs.

Last edited by solarwind (2008-09-14 04:30:46)

Allan · 2008-09-14 04:41:39

You could have a look at Firestarter of Guard Dog but I am not sure that they work on an application basis, just by port.

lucke · 2008-09-14 08:45:09

There was a thing like that (tux-sth?), but can't remember the name and can't google it.

-edit-

Ah, this one. http://tuxguardian.sourceforge.net/

Apparently hasn't been updated, I don't know how well it works.

Last edited by lucke (2008-09-14 08:47:04)

pelle.k · 2008-09-14 10:20:28

I'm not sure on what level you linux knowledge is, but this blog post makes things a bit clearer;
http://liquidat.wordpress.com/2007/07/1 … -on-linux/
Apart from using iptables (if you're up to the task), none of the suggested solutions are included in the repos nor AUR.
Also, on a side note, you could implement something like this using fireHOL (it supports iptables syntax), wich is just a easy-to-use frontend to iptables really.

Also, i found this (if you just want to block a user);
http://www.cyberciti.biz/tips/block-out … ables.html

iptables -A OUTPUT -o eth0 -m owner --uid-owner {USERNAME} -j DROP

Never tried that before, but it seems straight forward.

Arch Linux

#1 2008-09-14 04:29:25

Application Firewall

#2 2008-09-14 04:41:39

Re: Application Firewall

#3 2008-09-14 08:45:09

Re: Application Firewall

#4 2008-09-14 10:20:28

Re: Application Firewall

Board footer