• Introducing XDA Computing: Discussion zones for Hardware, Software, and more!    Check it out!

[APP][6.0+] NetGuard - No-root firewall

What are you mainly using NetGuard for?

  • Reducing data usage

    Votes: 439 30.6%
  • Saving battery

    Votes: 307 21.4%
  • Increasing privacy

    Votes: 785 54.7%
  • Blocking ads

    Votes: 927 64.6%

  • Total voters
    1,436
Search This thread

M66B

Recognized Developer
Aug 1, 2010
24,872
51,692
ic_launcher.png


NetGuard provides simple and advanced ways to block access to the internet - no root required.
Applications and addresses can individually be allowed or denied access to your Wi-Fi and/or mobile connection.

Blocking access to the internet can help:
  • reduce your data usage
  • save your battery
  • increase your privacy

Features:
  • Simple to use
  • No root required
  • 100% open source
  • No calling home
  • No tracking or analytics
  • No advertisements
  • Actively developed and supported
  • Android 5.1 and later supported
  • IPv4/IPv6 TCP/UDP supported
  • Tethering supported
  • Optionally allow when screen on
  • Optionally block when roaming
  • Optionally block system applications
  • Optionally forward ports, also to external addresses (not available if installed from the Play store)
  • Optionally notify when an application accesses the internet
  • Optionally record network usage per application per address
  • Optionally block ads using a hosts file (not available if installed from the Play store)
  • Material design theme with light and dark theme

PRO features
  • Log all outgoing traffic; search and filter access attempts; export PCAP files to analyze traffic
  • Allow/block individual addresses per application
  • New application notifications; configure NetGuard directly from the notification
  • Display network speed graph in a status bar notification
  • Select from five additional themes in both light and dark version

There is no other no-root firewall, except for clones, offering all these features.

This XDA thread is about using the latest version of NetGuard.
Off topic comments are allowed as long they are related to NetGuard and are in the general interest of the followers of this thread.

Discussion of purchases is not allowed here, please contact me via here instead.

NetGuard is being maintained and supported, but new features won't be added anymore.

For ad blocking, see here. Ad blocking is provide "as-is".

More information on Github:

Downloads:

Screenshots:
101-main.png
102-main-details.png

103-main-access.png
108-notifications.png


For more screenshots, see here.






XDA:DevDB Information
NetGuard, App for all devices (see above for details)

Contributors
M66B
Source Code: https://github.com/M66B/NetGuard/


Version Information
Status: Stable

Created 2015-10-25
Last Updated 2020-03-11
 
Last edited:

pulser_g2

Admin Emeritus / Senior Recognized Developer
Nov 27, 2009
19,537
11,595
So what the best setting... Use the pic U posted as a reference

Sent from my SAMSUNG-SM-N920A using Tapatalk

There's no "best" - this is subjective.

You have a list of apps, and you can choose whether or not to allow an app access to the Internet over WiFi or Mobile data.

Whether or not you want to let an app access the Internet is up to you.
 
  • Like
Reactions: 1977theone

Jeff_i

Member
Sep 25, 2014
22
3
Southern
Is it (technically) possible to add "on-demand" feature ?
Maybe something close to how LBE works ... Yes/No/Don't ask again
Suggestion...
 
  • Like
Reactions: bagarwa

pulser_g2

Admin Emeritus / Senior Recognized Developer
Nov 27, 2009
19,537
11,595
Is it (technically) possible to add "on-demand" feature ?
Maybe something close to how LBE works ... Yes/No/Don't ask again
Suggestion...

Not on a granular, per-app basis, at least right now.

NetGuard for Android works by creating a VPN service at system level. Based on your choices in the allow/deny screen, NetGuard will set up VPN rules for which apps are forced through the "VPN". The "VPN" isn't a real VPN; rather, it just sinkholes the traffic to nowhere.

The limitation here is that when creating these rules, we can only set which applications' traffic enters the VPN. We can't granularly control which requests or hosts they can talk to, on a per-app basis. It would be possible to set "for all apps" a whitelist/blacklist of IP addresses, but this would be quite different, and would likely be less useful as a firewall, and more useful as simply an "ad blocker".

The VPN interface doesn't tell us which app is trying to access the internet though - we need to set it up before-hand. There are ways to tell, but Google (or a careful OEM) could easily block those with SELinux policy updates, and the goal here is to try to get all the functionality we need without any kind of root access.
 

Primokorn

Senior Member
Nov 17, 2012
11,462
7,706
Nice app for non rooted users.
I've just created an issue on Github though.

French translation done.

I'll try to create an icon this weekend if I have free time. Let me know if you want a specific color,... etc.
 

M66B

Recognized Developer
Aug 1, 2010
24,872
51,692
Nice app for non rooted users.
I've just created an issue on Github though.

French translation done.

I'll try to create an icon this weekend if I have free time. Let me know if you want a specific color,... etc.

The problem you have reported is probably caused by a broken VPN implementation in your ROM. I will look into it later this week more detailed.

I like to keep the current colors, realizing not everybody will like them, but I know from experience I can't make everybody happy anyway.

Thanks for your translation!
 

Top Liked Posts

  • There are no posts matching your filters.
  • 6
    Version 2.299 beta is available on GitHub now and in the Play store test program after Google's approval.

    Changelog/download:
    https://github.com/M66B/NetGuard/releases
    2
    My motivation to work on this project has decreased to almost zero after a recent wave of 1 star Play store reviews. Mostly stupid reviews, like why does this app need internet?

    Literally millions of people use NetGuard but people seem only to review to complain about something, which is pretty tiresome. The project is not there to earn money, so what's left?
    Marcel, you are The Great Developer so you don't need to read these stupid 1 star ratings. Stay cool ;-) Kind regards, Lukas
    2
    App rule :
    Blocking or allowing an app.
    Made by blocking or allowing Wi-Fi or Mobile data for an app ?

    Connection rule :
    Blocking or allowing a connection of an app.
    a) Made by blocking or allowing an IP address for an app ?
    or
    b) Made by blocking or allowing a domain name with the hosts file for an app ?
    If yes, is there a precedence between a and b ?

    Am I right ?
    I hope having understood your reply. Sorry in advance if I try to clarify my understanding but I thing that it can help other people.
    Yes and yes. Ad blocking is system wide and therefore takes precedence over everything else.
    2
    @pardub Imagine that lots of people say everyday to you that your work is bad and almost nobody says it is good. How would you react?
    Who cares what these people say! They wouldn't know where to start and are either stupid or intentionally malignant.

    Besides, I think your app protects the privacy of those who use it. That is its beneficial effect on those who use it. What idiots write about it may be hurtful but it is not what's important. I'm sure you developed this superb app because it protects privacy not because you wanted to gather compliments. So what idiots write about it is really secondary.

    Your app is much needed and does its job very well. You know that. Its users know that. That some idiots (and they are idiots or malicious) try to bring it down is in the end just background noise.

    Thank you for all your efforts.
    2
    To be honest,I wouldn’t really take in consideration what people think about me if I was developing an app.

    In the same time, I would always take in consideration the constructive criticisms as they would help me to develop a better app .

    For those who couldn’t appreciate the real value of my work and have no clue about the time and dedication provided to build this app, well though….

    I have to acknowledge I cannot make everyone happy and getting totally unjustified bad reviews by some people is the unavoidable downside when you published something online.

    A developer can provide guidance about how to use his app but he cannot educate people.

    But I totally agree unjustified criticisms are not a pleasant thing and it doesn’t show any consideration for the work provided but we cannot control what people said.

    Time and efforts should only be dedicated to people who appreciate my work, not the others.
    Which could also mean that time is better spent on other things.

    For now I will keep maintaining and supporting the app, which means that bugs will be fixed and that the app will be adapted for new Android versions. There won't be new features anymore though.
  • 346
    ic_launcher.png


    NetGuard provides simple and advanced ways to block access to the internet - no root required.
    Applications and addresses can individually be allowed or denied access to your Wi-Fi and/or mobile connection.

    Blocking access to the internet can help:
    • reduce your data usage
    • save your battery
    • increase your privacy

    Features:
    • Simple to use
    • No root required
    • 100% open source
    • No calling home
    • No tracking or analytics
    • No advertisements
    • Actively developed and supported
    • Android 5.1 and later supported
    • IPv4/IPv6 TCP/UDP supported
    • Tethering supported
    • Optionally allow when screen on
    • Optionally block when roaming
    • Optionally block system applications
    • Optionally forward ports, also to external addresses (not available if installed from the Play store)
    • Optionally notify when an application accesses the internet
    • Optionally record network usage per application per address
    • Optionally block ads using a hosts file (not available if installed from the Play store)
    • Material design theme with light and dark theme

    PRO features
    • Log all outgoing traffic; search and filter access attempts; export PCAP files to analyze traffic
    • Allow/block individual addresses per application
    • New application notifications; configure NetGuard directly from the notification
    • Display network speed graph in a status bar notification
    • Select from five additional themes in both light and dark version

    There is no other no-root firewall, except for clones, offering all these features.

    This XDA thread is about using the latest version of NetGuard.
    Off topic comments are allowed as long they are related to NetGuard and are in the general interest of the followers of this thread.

    Discussion of purchases is not allowed here, please contact me via here instead.

    NetGuard is being maintained and supported, but new features won't be added anymore.

    For ad blocking, see here. Ad blocking is provide "as-is".

    More information on Github:

    Downloads:

    Screenshots:
    101-main.png
    102-main-details.png

    103-main-access.png
    108-notifications.png


    For more screenshots, see here.






    XDA:DevDB Information
    NetGuard, App for all devices (see above for details)

    Contributors
    M66B
    Source Code: https://github.com/M66B/NetGuard/


    Version Information
    Status: Stable

    Created 2015-10-25
    Last Updated 2020-03-11
    25
    25
    I have just released stable version 2.39.

    Changelog/download
    https://github.com/M66B/NetGuard/releases/tag/2.39

    This version will be available in the Play store after Google's approval.

    Usage data sharing has been removed from this version.

    The future of this project depends on the general support for this project. You can for example write something positive here or in the Play store, press the thanks button, donate something, purchase a pro feature or contribute translations or source code.
    17
    I have just released beta version 2.268

    Changelog/download:
    https://github.com/M66B/NetGuard/releases

    This version adds a setting for a domain name to use to validate the internet connection. The default is www.google.com. You could for example change this into www.opendns.com.
    17
    I have just released beta version 2.21.

    Changelog/download:
    https://github.com/M66B/NetGuard/releases/tag/2.21

    This version will be available as beta version in the Play store after Google's approval.