Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
In case someone downloaded the new version and it deleted the old version like I did just to find out its not a regular update but a whole new version and requirement to pay again, here is the link to download and restore the old version:

 
  • Like
Reactions: Chuckeee
Question for the audience:

Would you use LittleSnitch in place of LuLu, BlockBlock, and OverSight?
I prefer Little Snitch. It does similar things to the Objective-See tools, but I think it’s just easier and quicker to use. I use both though, depending on the machine. For some things the visual map can actually be useful.
 
  • Like
Reactions: DogHouseDub
I bought Little Snitch 2 when I was younger and used to pirate software.

Now I’ve grown up and pay for software I use so I’ve not needed it for some considerable time.
 
I've been installing it on my Macs using their 5 pack license for ages, but now I actually do a lot of this at the router level (Firewalla Gold +) instead and when I got prompted for the update yesterday I didn't click it. I do travel often with some of my laptops, so it might be work it, but maybe I'll skip 6 and maybe delete 5 for the home machines.
 
  • Like
Reactions: erthquake
Is this easy for average person to setup? I've been using LS for 10 years so I know basics but the router scares me a little bit. Is Firewalla user friendly for someone who understands tech but is not a coder or anything too complex?

I've been installing it on my Macs using their 5 pack license for ages, but now I actually do a lot of this at the router level (Firewalla Gold +) instead and when I got prompted for the update yesterday I didn't click it. I do travel often with some of my laptops, so it might be work it, but maybe I'll skip 6 and maybe delete 5 for the home machines.
 

I am no network expert, but I find that Firewalla is a mostly dummy proof system with a slick GUI experience at home.
First of all, it is not always feasible to carry a hardware with you all around acting as a firewall. Second, if a piece of software can do all the work nice and clean, why bother with all the hardware hassle?

I guess if you only have 1 device and it's your Mac. I have a whole family of less savvy Internet consumers to worry about on various devices. Firewalla has a very nice and clean app, the device covers the whole network.

I do agree if you are on a guest network our not your own administrator, you may prefer something like this.
 
  • Like
Reactions: LlamaLarry
I have been using Little Snitch since getting my first Mac in 2013 and find it extremely useful.
I have just upgraded now as I really like Little Snitch and also it's my most used App and lastly I don't mind paying to support the development.
 
Isn't there a common problem with anything like this that the company has access to all your data?

ie. if everything goes throught Firewalla then technically they could be the ones that could 'hack' your data if they decided to do so, no?

As that is the common problem with other services like VPN and stuff. So you have to trust the company in the first place, no?

I am no network expert, but I find that Firewalla is a mostly dummy proof system with a slick GUI experience at home.


I guess if you only have 1 device and it's your Mac. I have a whole family of less savvy Internet consumers to worry about on various devices. Firewalla has a very nice and clean app, the device covers the whole network.

I do agree if you are on a guest network our not your own administrator, you may prefer something like this.
 
I've had my eye on this for a while.. used it years ago and have been using the free Lulu firewall recently. Someone remind me to download this when they do their annual sale 😋
 
A PiHole doesn't run on your MacBook right? Image bringing in you PiHole to work, hotel or coffee shop and ask them to install it onto their network lol
Alternatively, you run a VPN (on the same Pi as the Pihole) and set your MacBook / iPhone to automatically connect to it when you're not at home. That way, you're always accessing the internet via your home connection and with the adblocking your own Pihole provides.
 
Is this easy for average person to setup? I've been using LS for 10 years so I know basics but the router scares me a little bit. Is Firewalla user friendly for someone who understands tech but is not a coder or anything too complex?
Super easy to setup and there is a large community on their site, reddit, and facebook. It's easy to get started with some default settings and then tune things as needed via the phone app (there is a web interface but I have not used it much).

Isn't there a common problem with anything like this that the company has access to all your data?

ie. if everything goes throught Firewalla then technically they could be the ones that could 'hack' your data if they decided to do so, no?

As that is the common problem with other services like VPN and stuff. So you have to trust the company in the first place, no?
I suppose they could collect the traffic, blocked flows, etc., but so could LS. I don't know if their inspection would allow them to see unencrypted data in flight, but surely someone smarter will chime in on this (off topic) topic.
 
  • Like
Reactions: Gloor
I use NextDNS.io with some of the mid-tier aggressive content blockers enabled. I suppose Little Snitch could be useful to see what's still getting through but then it sounds like some material can still bypass Little Snitch anyway.
 
Isn't there a common problem with anything like this that the company has access to all your data?

ie. if everything goes throught Firewalla then technically they could be the ones that could 'hack' your data if they decided to do so, no?

As that is the common problem with other services like VPN and stuff. So you have to trust the company in the first place, no?
Firewalla can't really "see" much of your data at all.
The Firewalla Cloud most of the time will work only with Meta Data and Hashed Data (one way encrypted). The cloud will only know your devices visited sites computed using SHA hash. The Hash's are not clear text.

  • Clear Text
    • The cloud will store your device names in cleartext. (This is used to send you notifications)
    • The cloud may store your device type. (iPhone, iPad, Thermostat, etc ...)
    • The cloud will store the OUI part of your device MAC address. (This is for identification processing)
    • Your email (or whatever you registered) when loading the app.
    • The public key generated when you first register.
    • The IP address your Firewalla is connecting from. This is to track license usage.
And all their code is open-source:

I love my Firewallas. I do enough network sysadmin at work. I need my home network to take up less of my mental bandwidth.
 
Why do they always charge users for upgrade...ugh. Companies like them and Parallels are the reason why people pirate.
A great, useful piece of software. The new-purchase and upgrade prices are worth every penny, especially given the fact that they are not subscription based.
 
There’s also PiHole that works for all network devices.
Little Snitch blocks attempted connections, with PiHole you block after the app or the operating system connects and sometimes it's already too late they already collected the data, IP locations etc...
 
Sounds like a huge distraction to actually getting something done!
Only at first. Things start settling down once you actually start using it and allowing/denying connections. It's not going to keep nagging you about rules you set permanently.
 
It's 59$ per device...That's just overpriced. What do people with 4 Macs do? buy 4 times the software? No man.
You are correct it’s 59USD to buy a new license. But still “It's about 30USD to jump from 5 to 6, and you can always just not upgrade at all.”

That was a comment responding to someone lamenting they needed to buy an upgrade, rather than as a free X.0 upgrade.
 
Why do they always charge users for upgrade...ugh. Companies like them and Parallels are the reason why people pirate.
That’s just gross entitlement and having zero clue how costly and time-consuming it is to continually improve software—especially within Apple’s ecosystem that constantly deprecates and changes things (usually for the better).
 
  • Like
  • Disagree
Reactions: kitKAC and rmadsen3
I am not sure I get the appeal of this app. If you are this interested in network security, you'll probably already have a robust firewall for your entire network and this would be mostly redundant.
The traditional "robust firewall" (you don't say what you mean) is aimed at blocking/allowing by IP address. There is a whole different world of application firewalls which block/allow based on application and not just IP address. Add to that the world of DNS blocking where many dns name translate to the same IP address.
 
A PiHole doesn't run on your MacBook right?
But Adguard Home (also free) does and is arguably easier to configure. And if you don't want to install software you use AdGuard's DNS which includes configurable blocking of trackers, malware and ads.

Little Snitch blocks attempted connections, with PiHole you block after the app or the operating system connects and sometimes it's already too late they already collected the data, IP locations etc...
This is interesting as it gets us to questions about overlapping functionality and whether Little Snitch can replace DNS level blockers (piHole, Adguard, etc.). Every decent security app seems to be adding DNS blocking.
 
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.