Looking for a firewall

I am looking for a firewall that, when an application requests access and I allow it, will create a rule allowing only the protocol and port that the app is asking for. I've used Sygate free and ZA free, and both of them create rules that allow all protocols and all ports. Does not need to be a free firewall, although free is nice.

Any ideas?

Thanks

 

Kerio 4.2.2 is that. I like it.

If looking for a real light solution Kerio 2.1.5
It is just a packet filter with no extras though:
http://www.dslreports.com/forum/kerio

Jarmo

 

Outpost Pro comes to mind.. Generally speaking, when network access is needed by an app, Outpost will prompt you for approval and then create the necessary rule with the proper ports and protocol and sometimes even IP also. It's tighter than your typical situation where the firewall just allows all traffic on any port and so on.

 

Thanks for the replies. I will look into both of these.

By the way, I have a router to block incoming, so I want a firewall mainly for application filtering. I'd like it to be good at detecting if the application has been modified by malware, or is being piggybacked on by spyware trying to phone home.

When you say it is just a packet filter, what do you mean? Is the 4.2.2 a more capable firewall, or just has more bells and whistles?

Kerodo,
I see on the Argnitum site that there is a free version, but it is several years old. Is it better to avoid that version?

Thanks

 

Yes, I would steer clear of that free version and go with the current Pro version if you can. I have not tried it personally in quite some time, but others have said that it has it's problems, and of course it's not been updated for a long time.

 

OK I will give it a try.

Thanks

 

hi vincenzo,

I also agree with Jarmo P in Kerio 4 Personal Pro...

Nice to use, blocks 'everything' from starting/outbound/inbound unless you allow/block

any apps from starting also, see pic, I unchecked the allow on Aladdin's Stuffit Zip program then started it to get an alert to show you..

will post couple more pics in next couple posts for ya...

Have not tried Outpost, so cannot comment on that one.

Cheers, TAS

 

apps permissions on starting/etc.

 

some 'bells and whistle' which can be turned off....

stats showing last months blocks of certain things, but of course the rate is much higher, just that I have other things as in JS/VBS, etc. which block first.

hth... Cheers, TAS

 

How much longer can Kerio 4.2.2 be used before we need to give it up and upgrade to a new firewall.

 

From vincenzo:

I would say so. Many have experienced this latest kerio build to be good, some report GUI problems, but I have not experienced them.

In Kerio free you get application control that is missing in kpf 2.1.5.
Also it has boot time and shutdown protection. Kerio 2.1.5 was though also fast to load up.

If you dont touch firewall GUI that is in a normal day to day usage rarely needed, then memory usage is maybe 16 MB. Rises to upto 25 MB when making new rules though. So it might be a limiting factor if a low memory system.
Does not slow down my 1 Mbit internet connection a bit.

 

Kerio will be a good alternative again in the future.

 

Thanks to all for the input. I've installed Kerio 4.2.2 and liking it so far.