Little Snitch 6 Help

Connection alert

When Little Snitch encounters a connection attempt that is not yet covered by a rule and Alert Mode is active, it shows a connection alert, asking you whether to allow or deny the connection. Answering the alert creates a rule which matches the connection. The next time the connection is attempted, it is covered by the rule you just created and the rule determines whether to allow or deny it.

Connection alert


  1. If no name for the remote host can be obtained or if it is not unique, the host’s Internet address is shown. If the name is not unique, but all potential names for the host are in the same domain, the common domain is also mentioned. 

  2. In fact, the remote end of the connection can also be the Berkeley Packet Filter. This is a low level operating system service which can be used to eavesdrop on all network communication or inject and receive any type of network data. Strictly speaking, it is not a remote host but a service which can be used to contact remote hosts. 


Was this help page useful? Send feedback.
© 2016-2024 by Objective Development Software GmbH