News: This forum is now permanently frozen.
linktree m0n0wall Forum  >  m0n0wall Support (English)  >  Feature Requests
linktree Topic: Application filtering
Pages: [1]
Topic: Application filtering  (Read 3405 times)
« on: March 17, 2007, 22:56:29 »
dcdias *
Posts: 15
would be possible to create a "application filtering module" ?
by inspecting all packages that pass in m0n0wall to internet and determinate the application name " for example EMULE". 

with this feature m0n0wall can blocks programs to pass to internet.


Thanks 
« Reply #1 on: March 18, 2007, 10:34:14 »
phanatos *
Posts: 8
IMHO this would be a very challenging feature, but why don`t you block all ports except those you like to use?
« Reply #2 on: March 18, 2007, 23:14:25 »
dcdias *
Posts: 15
emule can detect if a firewall is blocking emule standart ports, in that case emule uses port 80.

you can't block this port.

if a m0n0wall inspect  packets  e and blocking by application name..... this feature is used in isa server.

for me, only exists two request features to monowall be the best open firewall.

--> blocking by application name
--> high available

thanks.
« Reply #3 on: March 29, 2007, 16:05:53 »
BlackWand *
Posts: 4
elo guys,

One good way would be the possibility of scripting the "fixup".

In the rules page, you specify a port and/or a fixup script.

For example, you open port 6669 for IRC, and assign irc_dcc fixup script, that will check for the dcc request data, and open the mentioned ports from/to IP. In this example it would only look on data on port 6669.

Many programs use totally random ports, thats when all ports would need to be listened to, and open dynamically if its the chosen fixup script.
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines