FireFlier - A Project For Interactive Firewall Administration
Features of FireFlier:
As every packet which is not so far matched by any rule appears automatically in the interface, you have got the possiblity to accept or deny single packets, or create rules based on these packets.
FireFlier is also capable of filtering by application. So you are for example able to simply allow your ICQ Client to do anything it wants.
Consider the situation, that you want to allow a friend to access your computer for downloading some stuff. Granting him access to do that would usually mean, that you would have to block him a few hours later again, to "secure" your firewall. This is a task, which can be done by FireFlier itself. You just tell it, when you accept the packets, that the rule is only valid for 6 hours. After these six hours, the rule times out and you get a request again, if there is again a connection from his computer.