Andrey [0xdc, 0x09];1d ago

Hey fedi 
Does anyone know a good opensource firewall for a Linux server with an admin panel in web or tui?

I want to see recent tcp & udp connections, preferrably some info about their contents (e.g. compute JA4 fingerprint for TLS, extract domain from DNS request) and be able to immediately block by source/dest IP subnet, ASN, geoip, maybe even by JA4.

I guess i can just google it but i want to hear your recommendations. Firewall is a high-privileged software that have to be trusted anyway.

Thank you 

#askfedi #linux #selfhosted #infosec #firewall

Show threadMerospit

@darkcat09 I have always relied on a proxy server for outbound security.

Very interested to know how outbound firewall functionality is going these days.

For inbound firewall stuff I would use OPNsense with Crowdsec and an IDS to get at least some reactive capability.

Apr 5 at 9:04pmWeb