These look like 3 great resource friendly firewalls. My only "problem" with them is that there is no real form of Appliction Control, only allow/disallow traffic through port x. Is there any way, through 3rd party software, to find out what application is trying to send data out through this port, and allow/disallow it? Would snortsam be able to do this (i noticed it can plugin to chx-1 and 8signs), or am i better off looking at using another firewall where inbound filtering can be disabled? this seems very rare, and possibly unworkable in the current climate of kitchen-sink protection suites.