DynFi provides a free predictable, stable and reliable platform without the hair loss due to OPNsense’s quirks that are disruptive to day‑to‑day operation.

Features full next‑gen firewall feature set
– Stateful firewall
– Suricata IDS/IPS
– Squid proxy
– Anti‑virus
– IPsec & OpenVPN
– Real‑time visibility + dynamic filtering

• DynFi Manager
– Centralised management for DynFi, pfSense and OPNsense
– Alias management
– Auto‑provisioning
– SaaS or on‑prem deployment
– Low operational overhead

• Appliance range
– Hardware options from SMB to enterprise
– Free firewall download for custom builds

While there are commercial offerings by the company DynFi can be downloaded and self hosted for free.

If you care about privacy, control, and clean engineering, OPNsense is one of those rare projects that instantly earns your respect.
No noise. No gimmicks. Just a beautifully built firewall that gives you full visibility into your network without locking you into anything.

Key Features
Stateful Firewall (IPv4 & IPv6)
Clean rule management, live traffic view, and full transparency over what’s happening on your network.

Multi‑WAN Support
Load balancing, failover, and flexible routing for resilient connectivity.

Built‑In VPN Options
Native support for WireGuard, IPsec (including route‑based), OpenVPN, and Tinc mesh networking.

Intrusion Detection & Prevention
Suricata with Emerging Threats rules, inline IPS, and optional ET Pro for deeper protection.

Hardware Failover (CARP)
High‑availability setups with synchronized states for zero‑downtime environments.

Unbound DNS & DNS Tools
Local resolver, DNSSEC, overrides, and tight integration with firewall rules.

Modern Reporting & Monitoring
NetFlow analytics, exportable graphs, and real‑time visibility into interfaces, ports, and applications.

Open Source, Actively Developed
Transparent codebase, strong community, and a development model that prioritizes trust and longevity.

Portmaster is a free, open-source application firewall that monitors all network activity on your computer. It auto-blocks trackers system-wide, lets you set global or per-app rules, and even restricts connections by country. Key features:

🔒 System-wide tracker blocking with customizable rules

🌍 Country-based restrictions for tighter control over connections

⚙️ Per-app network policies for granular privacy management

🚀 Integrates with Safing’s SPN (privacy network) (paid) for extra anonymity

🧩 Actively developed, open-source, and community-driven

Perfect for privacy-conscious users who want robust, transparent control over their network traffic without juggling multiple tools.

TinyWall is a free, minimalist firewall for Windows that enhances the built-in Defender Firewall without installing drivers or kernel components. Key features include:

🛡️ Non-intrusive design: no popups, no distractions

⚙️ Tampering protection, blocklists, and boot-time filtering

🧠 Smart rules for UWP apps and temporary exceptions

🖥️ Ultra-lightweight with negligible system impact

🔒 No telemetry, no data collection, no ads—just security

Perfect for users who want robust control over their network without bloated software. A great choice for privacy-conscious Windows users.

Rethink DNS + Firewall is a free, open-source Android app that makes it easy to monitor app activity, block ads and trackers, and circumvent Internet censorship. Key features:

🛡️ Android firewall: prevent apps from connecting to the Internet over Wi-Fi or mobile data

🚫 Content blocking: ads, trackers, malware, and more

🌍 Anti-censorship: encrypts DNS requests to bypass restrictions, with presence in 200+ locations worldwide

📊 Monitoring: logs every app’s connections and data usage

⚙️ Automated reports flag suspicious connections and reveal surveillance attempts

🔒 Privacy-first design, no accounts required

Perfect for anyone who wants system-wide privacy and control over their Android device.