"Kenneth Hårstad" <kenhars@gmail.com> wrote in message news:474937a3$1@news.broadpark.no... > ant wrote: >> Hello, >> >> I'm looking for a software like Zone Alarm (personal firewall) >> that works on Linux. Can you help me? > > Check out http://www.fs-security.com/ > > A netfilter (iptables) frontend. Easy to use:) I use Shorewall (http://www.shorewall.net/), another iptables frontend. It is not a GUI, and requires that you know/learn just the right amount about ports and packets etc. Once you've invested the effort to master it, it will serve you perfectly. To paraphrase Phil Sherman, you should keep track of what software is running on your system and what ports you expect it to use, and configure this in shorewall rather than make on-the-fly decisions. Shorewall works well with ulogd, making possible a homebrew monitoring program as suggested by Wayne. Good luck, CC