A practical guide to the four major Linux firewall technologies - iptables, nftables, firewalld, and ufw. Covers real-world cloud server hardening with concrete examples, from locking down SSH to b...
OpenSnitch is a nice for the desktop environment, deny by default and prompts the user when an application requests a open port, at first the prompts can get a little overwhelming given how many things want to connect to xyz server but eventually lightens up.
If you don’t trust the platform then you shouldn’t be using it. No bandaid like antivirus or firewall can help with that.
I mean, if you don’t have a firewall on the device itself then your router certainly does, your device requests xyz port open your router will oblige with UPNP unless explicitly denied.
The on-device firewall is just an extra step before it hits your router’s firewall anyways, I’m sure your devices have made contact with servers behind your back that you know nothing about.
The firewall is annoying? I would argue and say the firewall is protecting your computer from connecting to a rouge server, annoying or not it’s better than some douche abusing an exploit in your system.
Simplewall works great, it’s open source.
And yes, there are a couple of million requests made by windows apps alone, which are completely fine to block.
Simplewall also blocks windows telemetry.
I have to use win11 at work and it’s an absolute ahitstorm of network requests that you don’t get to see when using windows firewall.
Glaswire looks beautiful and functions well, but you will hit the paywall after a couple of weeks (I used this on the around 2010 I think)
OpenSnitch is a nice for the desktop environment, deny by default and prompts the user when an application requests a open port, at first the prompts can get a little overwhelming given how many things want to connect to xyz server but eventually lightens up.
I really dont like the idea that a program on my local os doing things I don’t want it to do and the only thing stopping it is a software firewall.
If you don’t trust the platform then you shouldn’t be using it. No bandaid like antivirus or firewall can help with that.
I mean, if you don’t have a firewall on the device itself then your router certainly does, your device requests xyz port open your router will oblige with UPNP unless explicitly denied.
The on-device firewall is just an extra step before it hits your router’s firewall anyways, I’m sure your devices have made contact with servers behind your back that you know nothing about.
Its a little annoying on Linux but I wonder what it would be like on Windows.
The firewall is annoying? I would argue and say the firewall is protecting your computer from connecting to a rouge server, annoying or not it’s better than some douche abusing an exploit in your system.
Windows firewall already does prompt like this
Glasswire and Tinywall(?) are like this.
Simplewall works great, it’s open source. And yes, there are a couple of million requests made by windows apps alone, which are completely fine to block. Simplewall also blocks windows telemetry. I have to use win11 at work and it’s an absolute ahitstorm of network requests that you don’t get to see when using windows firewall.
Glaswire looks beautiful and functions well, but you will hit the paywall after a couple of weeks (I used this on the around 2010 I think)
Trivial. It pops up, you click.