[Pijgn] > OpenSnitch in Debian is currently incompatible with (some?) kernel space > network tools such as wireguard and NFS. These are entirely unusable so > long as the opensnitchd service is running.
I use opensnitch with NFS on Debian Bookworm, and have not noticed it is making NFS unusable. How did you end up with this conclusion? I had problems with UDP traffic and Minecraft earlier, as seen in <URL: https://github.com/evilsocket/opensnitch/issues/813 >, but managed to get it working by enabling 'Debug invalid connections' in the Nodes tab of the preferences. Perhaps it can help you with NFS too? When that is said, I would very much like to see ebpf support in Debian. I know upstream is working on figuring this out and that patches would be most welcome. Perhaps you can provide some? -- Happy hacking Petter Reinholdtsen
