logoChat01.ai

https://github.com/tnodir/fort 和https://github.com...

Created on: October 15, 2025

Answered using GPT-5 Thinking by Chat01

Thought

Answer construction

Both Fort and Simplewall rely on Windows Filtering Platform, so their performance is generally similar under default settings, with network speed not being bottlenecked by either. Fort uses a kernel driver, but enabling additional features like logging can increase CPU usage, as demonstrated in anecdotal reports (#1684, #913). Simplewall's minimalist design uses fewer resources, while Fort might consume more memory due to its added features. However, we don’t have precise data on memory usage.

Recommendations and testing

For stability and minimal system changes (no custom driver), Simplewall is a good choice. It’s lightweight — no extra drivers are added. If you need features like specific speed limits, zones, or advanced logging, choose Fort, which includes a driver for better filtering. You can test performance on your machine with tools like iperf3 or Windows performance counters. Keep the answer in Chinese as per the user's request.

Performance and Resource Use Comparison

两者在网络转发性能上几乎没有差距,都是基于 Windows Filtering Platform(WFP)进行内核过滤。simplewall通过 WFP 下发规则,不装自定义驱动。Fort 则有自研内核驱动,但都运行在 WFP pipeline 里。(引用simplewall README和Fort的release notes)

资源占用: simplewall 更轻,官方README和

Thought for 1m 43s

Answer

短答案:在“网络转发性能”(吞吐/延迟)上,两者差距通常很小;它们都依赖 Windows 的 WFP 在内核里做过滤。simplewall只是在用户态通过 WFP 下发规则;Fort 另带自家内核驱动,但同样走 WFP 流水线。所以在关闭额外功能(日志/统计/限速)时,二者的纯过滤开销接近。(GitHub)

为什么差不多

  • simplewall:官方说明就是一个 WFP 控制器(不是 Windows 防火墙的外壳,也不装自定义驱动),因此负担很轻。(GitHub)
  • Fort (tnodir/fort):项目版本记录里多次出现“Driver:”变更,说明它有自己的内核驱动;论坛/维基也介绍其“基于 WFP 的自有内核驱动”。这能实现更早期/更细的拦截和功能,但不等同于更高吞吐。(GitHub)

影响你体感“性能”的反而是这些

  • 日志/统计/通知:开启数据包日志或实时统计会吃 CPU/磁盘,任何一款都如此。simplewall 的 issue 就有人在长时间开日志后感觉卡顿或 CPU 升高;Fort 也有面向日志/统计的驱动选项。(GitHub)
  • 规则数量与复杂度:规则越多、匹配越复杂,遍历/记录成本越高(两者同理,WFP 层面为主)。
  • 附加功能:Fort 提供限速、流量统计、Zones 等高级能力;开启它们会带来额外开销。(GitHub)

该怎么选

  • 想要最轻量、对系统改动最少(无自定义驱动) → 选 simplewall。(GitHub)
  • 需要更丰富的功能(如应用组限速、更细的统计/记录、较早期的拦截) → 选 Fort(注意按需关闭不必要的统计/日志以控资源)。(GitHub)

小结:默认/精简配置下二者“性能”很接近;simplewall更偏轻便,Fort偏功能取向。是否“更快”更多取决于你启用了哪些功能与规则,而不是项目名字本身。

Share this Q&A