Knetfilter is a user-friendly tool that provides a graphical interface for managing iptables firewall rules on KDE.
One significant feature of knetfilter is that it can save iptables rules independently of iptable-save command. This means that users can save ALL chain policies, which was not possible with previous versions of iptable-save that did not work. Knetfilter was one of the first GUI/applications to run on Linux 2.4.X and offered the ability to save and restore firewall configurations.
Since version 2.2.2, knetfilter has allowed CBQ traffic shaping using fw classifier. Knetfilter has made great strides in developing QoS support and implemented features such as the ability to delete a class or a qdisc, and a monitor to see which qdiscs, classes, and filters have been configured. Although knetfilter boasts many cool features, it currently lacks a save function. However, the knetfilter team is open to receiving patches for this issue.
As for limitations, Iptables 1.2.3 has a noisy bug that only allows TOS mangling to work if the TOS value is set using its name and not its numeric value. This is easily resolved, but the problem persists when using the iptables-save command, which saves TOS-related rules using the hexadecimal value. This means that users would not be able to restore the rules, as iptables would be unable to parse them. Knetfilter correctly sets the TOS using decimal values, but this does not work with iptables 1.2.3 version. Therefore, the suggestion is to avoid using iptables 1.2.3 if TOS mangling is necessary.
Finally, the latest version of Knetfilter brings some minor corrections to various typos. Overall, Knetfilter is a great software for managing firewalls and QoS support on Linux, with many cool features to make the task easier and more intuitive.
Version 3.5.1: N/A