Tools compared: Linux application firewalls

Finding the right tool can be difficult. This sheet compares Douane, LPFW, OpenSnitch and TuxGuardian.

DouaneLPFWOpenSnitchTuxGuardian
Description Douane is an application firewall that interacts with the user to allow or deny new network connections. OpenSnitch is a Linux port of the popular macOS Little Snitch application firewall
Tool details LPFW is the abbreviation for LeoPard FloWer and is an application firewall for Linux. OpenSnitch is a tool based on Little Snitch, a macOS application level firewall. All outgoing connections are monitored and the user is alerted when a new outgoing connection occurs. This allows the user to detect and block any unwanted connections. The OpenSnitch tool relies on NFQUEUE, which is an extension for iptables. With this extension software running in userland can intercept IP packets and allow/drop them.
Dependencies GTK 3, Linux 3.x kernel, Python 3 iptables
Strenghts The source code of this software is available The source code of this software is available More than 2000 GitHub stars, The source code of this software is available
Weaknesses Unknown project license No updates for a while
Programming language(s) C, C++, GTK+ C++, Python Python C
Last release Unknown Unknown Unknown 0.5 (2006-04-08)
Tool page (last updated) 2017-09-17 2017-09-17 2017-09-18 2017-09-17
Tool score
78
56
64
59
DownloadProject websiteClone on GitHubClone on GitHubDownload