
I wonder if there is any advanced firewalls to Linux?
On my wish list of what i want it to do (besides the obvious a firewall does) is following.
1. A simple real time overview of which programs/files are connected, preferably with the target's IP address and mac address. A bonus if the amount of data transfer is displayed in real time.
2. It should be easy and fast to give permission/block the program/file either permanently or just for this user session. Both for inbound and outbound traffic.
3. Be able to create rules where i can specify mac and ip address over computers or targets that may or may not have access, both in and outgoing rules. Ideally if I can specify a whole net-range. ex.100.0.0.1-100.255.255.255. Additional bonus is being able to block domains or part of domain. (ex: https: // example.com or example.example.com or * .example.com)
4. There must be different types of logs, especially traffic logs that log normal traffic, as well as security logs for intrusion attempts with time, date, length, port, ip-address and preferably the mac address of the attacker. Bonus if there is a built-in backtrace feature.
5. Bonus... If I have multiple network cards in the computer, if i could create different rules for the different network cards.
Is there such or better for Linux?
Best Regards Marie
