Thread
:
[Announce] genwall a simple iptables firewall
View Single Post
Halftux
2019-04-03 , 18:33
Posts: 878 | Thanked: 2,535 times | Joined on Feb 2012 @ Germany
#
85
New version released for SFOS.
v1.1.0-1
- added filter list for deleting rules
- fixed addnow ports dialog
- added rules creator from log
- added ofono info
- added iptables log option and view
- added messages
With the new added features you can add and remove rules during runtime. I will try to explain how....
First you need to generate your rules again with a checked checkbox "activate logging for Rejectwall". After that you need to run the script.
Then you try to connect with your pc to a closed port. In this example I used ftp 21 to generate some kernel messages.
For an easy readability I would suggest to set an filter on the log list entry names. When you would like to add a rule then I would suggest following filter settings.
When you are play with outgoing packages, you need to choose out instead of in.
After the filter is set go to the rules--chains tab again and choose as "filter log" Rejectwall and hit the load button.
Then you will get filtered kernel messages to the log textedit. In the right top corner there will be a menu button. There you could choose "open" to open a listwidget. Now you could choose a rejected event and the rules creator pops up.
The rules creator can create some different rules for you, which will be added in the listwidget on the rules--extra tab. With the current ip checkbox, when activated, you could restrict the rule to the source ip.
With accept and drop button you create the rule. You can also drop the packages into the firewall chain. When you don't like the source ip you could also drop all incoming from that ip with "drop all from ip".
The accept now button will open promptly the port ristricted to an ip or not depends on the checkbox.
Now for example when you would like to close the port again you could go to the local--filter tab, there is again a menu button, where you choose Input. A listwidget will open, there you select the specific rule and by pushing the delete button it will be promptly removed.
There is also another way to open a port during runtime.
Under local--ports tab you will find the add now button. Set you port and then hit the button. Now you will see how many rules are in Input. Here you could choose a rule number for adding. Be careful with choosing not that the rule has no effect. When you use add now from the log filter, the generated rule has everytime number one.
Choose the interface and push the insert button.
Another thing, I also implemented some ofono modem and sim card information. There are some abbreviations for which I write the full name here.
LAC= Location Area Code
CID= Cell Id
MCC= Mobile Country Code
MNC= Mobile Network Code
__________________
N900:
gpxsee
,
fahrplan
,
gpscon
,
genwall
,
qrcode
,
hextool
,
libjansson4
,
libevent-2.0-5
,
cnee
,
psi-plus
,
mihphoto
,
shc
Maemo flasher/rescue live image.
Fremantle Harmattan SDK VM
Quote & Reply
|
The Following 2 Users Say Thank You to Halftux For This Useful Post:
Maemish
,
peterleinchen
Halftux
View Public Profile
Send a private message to Halftux
Visit Halftux's homepage!
Find all posts by Halftux