Is there a open source firewall what I can edit to block a certain outgoing port when it is running?
Is there a open source firewall what I can edit to block a certain outgoing port when it is running?
You should be able to do that in the options.
dwk
Seek and ye shall find. quaere et invenies.
"Simplicity does not precede complexity, but follows it." -- Alan Perlis
"Testing can only prove the presence of bugs, not their absence." -- Edsger Dijkstra
"The only real mistake is the one from which we learn nothing." -- John Powell
Other boards: DaniWeb, TPS
Unofficial Wiki FAQ: cpwiki.sf.net
My website: http://dwks.theprogrammingsite.com/
Projects: codeform, xuni, atlantis, nort, etc.
I dont have a firewall tho
So get one. ZoneAlarm blocks outgoing ports unless you specifically open them.
Last edited by CornedBee; 03-05-2006 at 03:27 PM.
All the buzzt!
CornedBee
"There is not now, nor has there ever been, nor will there ever be, any programming language in which it is the least bit difficult to write bad code."
- Flon's Law
yeah but I just want to block one or two ports to a specific ip address...
Developing your own program to do this will take a lot more effort than simply grabbing ZoneAlarm and configuring it to allow all ports you want except the two you want to block.
hmph ok, but i want to attempt to write a simple firewall in the near future, can zonealarm block specific packets?
Also I dont think zone alarm and ICS dont get along very well..
If you really want source for a packet filtering firewall, look up the pf program that is distributed with the OpenBSD operating system. It is available as source code (albeit under some licensing restrictions) and is almost certainly BSD operating system specific.
One thing with firewalls (whether they just block ports, or do packet filtering) is that they need to get VERY intimate with the operating system to function. Under windows, most firewalls (eg zonealarm, or commercial offerings from Norton or Trend) make use of dedicated kernel mode drivers to allow them to intercept requests of a program to the OS related to ports and socket. If they didn't do that, it would be possible for malicious programs to bypass the firewall, which would be self defeating. Writing kernel mode drivers under windows (or the equivalent under other OSs) is a specialised skill for a dedicated few and the drivers are VERY difficult to write (even a minor bug can cripple an OS). Under windows, I'm not aware of any firewall program for which source code is freely available. The reason is probably that the authors of programs like Zone Alarm don't want to encourage amateurs to mess with the workings of their programs (in practice amateurs will probably get it wrong). Having been in a situation of getting complaints about a program that I wrote, in which I was blamed for a problem that was caused by someone else's modifications, I can understand authors of firewall programs being reluctant to give out the source.
I woudl never be able to port that in my lifetime
On other note I had to uninstall Zonealarm since it and ics dont get along
Is that the only packet filter that you know of? (that blocks certain packets)
Last edited by bikr692002; 03-05-2006 at 08:39 PM.