OpenSnitch - An Excellent Firewall App for Linux

Most Linux users have the idea wrong that by the simple fact of having Linux installed they will no longer be in danger, when it is not.

It will always be recommended to use some extra applications to protect your information and your system, of which the first recommended filter is the use of a Firewall.

It is because of that Today we will talk a little about OpenSnitch which is a port of Little Snitch and this, in turn, is a firewall developed exclusively for Mac OS.

The main function of OpenSnitch is to track Internet requests made by the applications that the user has installed.

OpenSnitch allows you to create rules for which applications should allow Internet access and which ones should be blocked.

Every time an application that does not have an active rule tries to access the Internet, a dialog box appears. This dialog box offers the option to allow or block the connection.

You can also decide if this new rule applies to the process, the exact URL that is trying to access the domain, that instance, that session, or forever.

All the rules that are created are stored as JSON files, so you can change it later if necessary. For example, if the user has blocked an application incorrectly.

How to install OpenSnitch on Linux?

For those who are interested in being able to install this application on their systems, we are going to explain how you can install OpenSnitch on your Linux distribution.

As prerequisites we must have Go installed on our system and have the $ GOPATH variable defined.

Already counting on it, now we are going to install some dependencies necessary for the operation of OpenSnitch within our system.

For whoever they are Debian, Ubuntu users or any derivative of these, we are going to open a terminal and we are going to install these dependencies with the following command:

sudo apt-get install protobuf-compiler libpcap-dev libnetfilter-queue-dev python3-pip

Now if they are RHEL, CentOS, Fedora users or any derivative of these, the dependencies install them with the following command

sudo dnf -i protobuf-compiler libpcap-dev libnetfilter_queue-devel python3-pip

Finally, para Those with any version of openSUSE installed will be able to install these dependencies with the following command:

sudo zypper in protobuf-c libpcap-dev libnetfilter_queue python3-pip

OpenSnitch

First We will finish configuring the dependencies with the following commands:

go get github.com/golang/protobuf/protoc-gen-go

go get -u github.com/golang/dep/cmd/dep

python3 -m pip install --user grpcio-tools

Already with the necessary dependencies in the system, now we are going to proceed to install this application with the help of the following commands:

go get github.com/evilsocket/opensnitch

cd $GOPATH/src/github.com/evilsocket/opensnitch

Finally we proceed to compile the application:

make

sudo make install

And we restart the services with:

sudo systemctl enable opensnitchd

Now is the time to start the OpenSnitch service with:

sudo service opensnitchd start

And we start this application with the following command:

opensnitch-ui

How to install OpenSnitch on Arch Linux and derivatives?

While for those who are Users of Arch Linux, Manjaro, Antergos or any derivative of Arch Linux will be able to install OpenSnitch from the AUR repository.

The only requirement they must meet is to have the AUR repository enabled in their pacman.conf file and to have an AUR wizard on their system, if they do not have it they can visit the following article where we recommend some.

To install OpenSnitch in a terminal, we are going to type the following:

yay -S opensnitch-git

Once the application is installed, you can search for its launcher in your application menu to be able to run it.

From the icon in your application tray, you will be able to access OpenSnitch network statistics, which show information about current processes such as: hosts, addresses, ports or users, as well as an overview of your current connections:

  • What applications are accessing the web?
  • What IP address are they using?
  • What the user owns
  • What port is being used?

Be the first to comment

Leave a Comment

Your email address will not be published. Required fields are marked with *

*

*

  1. Responsible for the data: AB Internet Networks 2008 SL
  2. Purpose of the data: Control SPAM, comment management.
  3. Legitimation: Your consent
  4. Communication of the data: The data will not be communicated to third parties except by legal obligation.
  5. Data storage: Database hosted by Occentus Networks (EU)
  6. Rights: At any time you can limit, recover and delete your information.