Linux Application Firewall (LAF) is an application firewall for Linux. It allows users full control over which applications are allowed to communicate over the network.

• Subgraph Firwall(Proc Method)
• OpenSnitch (Proc Method)

• Douaneapp (Kernel Module)
• Linux Application Firewall (Kernel Module)
• Lavender Firewall (Proc Method)
• Leopard Flower (Proc Method)
  • active Fork of Leopard, 14 days activity.
  • Overwatch Fork of Leopard, Stalled 6 months.
• TuxGaurdian (Kernel Module)
• Program Guard (Kernel Module)
• FireFlier
• afirewall - Development, Stalled 2 years. (Proc Method)

• AppArmor - Specific Networking Option
• SE Linux
• RSBAC provides a network template
• iptables with group matching ArchForum
• DisableNetwork document listing possibilities.
• Vuurmuur Firewall
• P alcanfw - Perl script.
• Maillist Talk about Hone and snet
  • snet linux security module.
  • HoneProject Monitoring connections and mapping to PID.
• Tomoyo inet options.
• caitsith Access restriction module.
• libseccomp Syscall filtering lib.
• kernsec

LAF requires libnetfilter-queue, it's dependency libnfnetlink and a kernel 2.6.14 or later.

sudo apt-get install libnfnetlink-dev libnetfilter-queue-dev

If you are a C or a Python developer you can help us improve LAF. Feel free to take a look at the bug tracker for some tasks to do.

LAF is licensed under GPLv3 license. See LICENSE for more information.