firewall

Is it possible to write a firewall in python? Say it would block all traffic? Jerub Yes, yes it is. I have some Python code that interacts with Linux iptables to perform firewalling duties, using nfqueue. I can use a rule in iptables that looks like: iptables -A INPUT -j NFQUEUE --queue-num 1 And then have some Python code that looks like: import nfqueue from dpkt import ip q = None def cb(dummy, payload): # make decision about if the packet should be allowed. in this case, drop everything: payload.set_verdict(nfqueue.NF_DROP) q = nfqueue.queue() q.open() q.bind() q.set_callback(cb) q.create

For me this is a very standard setup, I had a ubuntu machine running docker and ufw as my firewall. If my firewall is enable the docker instances is unable to connect to outside $ docker run -i -t ubuntu /bin/bash WARNING: Docker detected local DNS server on resolv.conf. Using default external servers: [8.8.8.8 8.8.4.4] root@d300c5f17207:/# apt-get update Err http://archive.ubuntu.com precise InRelease 0% [Connecting to archive.ubuntu.com] W: Failed to fetch http://archive.ubuntu.com/ubuntu/dists/precise/InRelease W: Failed to fetch http://archive.ubuntu.com/ubuntu/dists/precise/Release.gpg

I'm trying to generate an SSH server in a machine behind a router. First I tried to bind the SSH to my public IP address: ssh -R 10002:localhost:22 <ip_address> Then I'm prompted with a password request, however my username password doesn't seem to work. Obviously I know my username password, so it seems to me that it's trying to authenticate in another computer under the same network. Any suggestions how to fix this? It would also help me any alternative on how to create an SSH server behind a Router when you don't have access to the Router. The ports in iptables are all open. UPDATE As

I am hosting special HTTP and HTTPS services on the ports 8006 and 8007 respectively. I use iptables to "activate" the server; i.e. to route the incoming HTTP and HTTPS ports: iptables -A INPUT -i eth0 -p tcp --dport 80 -j ACCEPT iptables -A INPUT -i eth0 -p tcp --dport 443 -j ACCEPT iptables -A INPUT -i eth0 -p tcp --dport 8006 -j ACCEPT iptables -A INPUT -i eth0 -p tcp --dport 8007 -j ACCEPT iptables -A PREROUTING -t nat -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8006 iptables -A PREROUTING -t nat -i eth0 -p tcp --dport 443 -j REDIRECT --to-port 8007 iptables -A OUTPUT -t nat -d 127.0.0

I am developing an application for Mac, and wants to add firewall rule when my application launches, would like to know the entry point, if anyone has any idea, I guess, i need to modify /Library/Preferences/com.apple.sharing.firewall.plist But this file is not present in my Machine and any info about structure of this file ? Requirement is something like this When it runs, then browser shouldn't allow to open some particulars website, so i believe, this is going to be a application level firewall. Thanks for looking at it, Finally i am using ipfw to do so, but still not yet clear about how to

The goal is to send outbound email from my shared host to Mandrill via SMTP using PHP and I have full cooperation with the host sys admins. Current situation: ✅ PHP can connect to smtp.mandrillapp.com port 443 (used for HTTPS) ❌ PHP cannot connect to smtp.mandrillapp.com port 587 (used for SMTP) ✅ PHP can connect to portquiz.net port 443 (used for HTTPS) ❌ PHP cannot connect to portquiz.net port 587 (used for SMTP) ✅ Telnet can connect to smtp.mandrillapp.com port 443 ✅ Telnet can connect to smtp.mandrillapp.com port 587 Telnet is tested by them logging in as root and running telnet HOST PORT