felix
/
zunft
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
1 Branch
0 Tags
24 KiB
 
Tag: Branch: Tree: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Go to file
Felix Kehrer 78c6150d59
initial commit 		1 year ago
assets initial commit 1 year ago
src initial commit 1 year ago
.gitignore initial commit 1 year ago
Cargo.lock initial commit 1 year ago
Cargo.toml initial commit 1 year ago
README.md initial commit 1 year ago

README.md

README

Zunft - Zauberei und nftables

Now using the new Rust 2021 edition :)

Useful commands

cargo +nightly build --release && sudo setcap cap_net_admin+ep ./target/release/zunft && cargo +nightly run --release
sudo iptables -t filter -A INPUT -j NFQUEUE --queue-num 0 --queue-bypass
sudo iptables -L INPUT --line-numbers
sudo iptables -D INPUT 1

Testing the filter

While you can run whatever you want, the test case I made is for you to serve the assets folder with something like python -m http.server 8000, and then try to have a lookg at the files. Normally you should be able to get both files, but once the firewall runs, trying to access /secretshould not work anymore.