Bug 47531

Summary: Netfilter lacks ability to filter packets via Application-origin
Product: Networking Reporter: Chad (chad938)
Component: Netfilter/IptablesAssignee: networking_netfilter-iptables (networking_netfilter-iptables)
Status: RESOLVED INVALID    
Severity: high CC: alan
Priority: P1    
Hardware: All   
OS: Linux   
Kernel Version: 3.6 Subsystem:
Regression: No Bisected commit-id:

Description Chad 2012-09-14 17:48:09 UTC 
Users need the ability for Linux firewall to filter packets based on what Application they are originating from. This ability is present in Mac and Windows firewalls, but not Linux.

For example, users would like ability to open Port 80 for Firefox, but keep Port 80 closed for other applications.

This ability enhances Privacy & Security of the user but also helps to better inform the user about the comings and goings of internet traffic and what application/s are causing the traffic.
Comment 1 Alan 2012-09-15 14:04:52 UTC 
Not actually a bug as such.

This is best discussed as a proposal on netdev@vger.kernel.org