Application Layer Firewall
 

Hi,

I need an application layer firewall besides the layer 2 stateful packet firewall.

I did google search but return me nothing. Perhaps some experience Linux user can give some opinion.

Any suggestion?

You mean next to the network (3) and transport (4) layers Netfilter operates on? OK, any specific application? Anything else to add?

I'm not looking for Layer 3 or Layer 4 stateful firewall because I'm currently using OpenBSD pf which is very good compare to iptables or new replacement nftables.

I'm looking for Layer 7 application firewall to block skype, gtalk, etc....

..then you're in the wrong forum, I'll move your thread.


Only thing I know of is ipfw-classifyd.

This appears to be a duplicate of this thread, which also contains more information.

As noted in the other thread your requirements are for an intermediate router, not the end point where the application actually runs. Hence you cannot use a layer 7 application firewall because the application does not run on the router.

Please post your thread in only one forum. Posting a single thread in the most relevant forum will make it easier for members to help you and will keep the discussion in one place. This thread is being closed because it is a duplicate.