Andrey [0xdc, 0x09];2d ago

Hey fedi 
Does anyone know a good opensource firewall for a Linux server with an admin panel in web or tui?

I want to see recent tcp & udp connections, preferrably some info about their contents (e.g. compute JA4 fingerprint for TLS, extract domain from DNS request) and be able to immediately block by source/dest IP subnet, ASN, geoip, maybe even by JA4.

I guess i can just google it but i want to hear your recommendations. Firewall is a high-privileged software that have to be trusted anyway.

Thank you 

#askfedi #linux #selfhosted #infosec #firewall

Show threadwfk1d ago
@darkcat09 not really a useful answer, I'm afraid, but personally I never liked all these high level user interfaces grafted on top of the base tools. I know what the base tools (ipfwadm/ipchains/iptables/nftables) do, so I prefer to use those directly. I guess I'm not really a representative typical user...
The advantage is that you have a better understanding of exactly what is happening. The disadvantage is that you need to do a bit more manual work to get a full overview.
Show threadAndrey [0xdc, 0x09];
@wfk
Fair, i usually prefer minimalism and less abstractions too. Complex systems are much harder to understand (if possible at all)
Apr 6 at 9:30pmWeb