Controlling program access to internet

Asked by Jaime Pérez on 2014-04-23

I would like to know if there is some way to allow or deny data transmission to certain programs: for example, I don't want firefox to be able to open a connection in port 22, but I want ssh server to be able. It should be done with apparmor?

Distributor ID: Ubuntu
Description: Ubuntu 14.04 LTS
Release: 14.04
Codename: trusty

ufw:
  Installed: 0.34~rc-0ubuntu2
  Candidate: 0.34~rc-0ubuntu2
  Version table:
 *** 0.34~rc-0ubuntu2 0
        500 http://ubuntu.uc3m.es/ubuntu/ trusty/main amd64 Packages
        100 /var/lib/dpkg/status

Question information

Language:
English Edit question
Status:
Answered
For:
Gufw Edit question
Assignee:
No assignee Edit question
Last query:
2014-04-23
Last reply:
2014-04-23
Jaime Pérez (jaime-91) said : #1

gufw:
  Installed: 14.04.2-0ubuntu1
  Candidate: 14.04.2-0ubuntu1
  Version table:
 *** 14.04.2-0ubuntu1 0
        500 http://ubuntu.uc3m.es/ubuntu/ trusty/universe amd64 Packages
        100 /var/lib/dpkg/status

costales (costales) said : #2

Hi Jaime, I don't know. You can't with Gufw/ufw now.
My thought is: the firewall is iptables, the iptables is in the kernel, then you can allow/deny ports/IPs... I don't know if you could filter by app.
Sorry.

Can you help with this problem?

Provide an answer of your own, or ask Jaime Pérez for more information if necessary.

To post a message you must log in.