You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Felix Kehrer 78c6150d59 initial commit 1 year ago
assets initial commit 1 year ago
src initial commit 1 year ago
.gitignore initial commit 1 year ago
Cargo.lock initial commit 1 year ago
Cargo.toml initial commit 1 year ago
README.md initial commit 1 year ago

README.md

README

Zunft - Zauberei und nftables

Now using the new Rust 2021 edition :)

Useful commands

cargo +nightly build --release && sudo setcap cap_net_admin+ep ./target/release/zunft && cargo +nightly run --release
sudo iptables -t filter -A INPUT -j NFQUEUE --queue-num 0 --queue-bypass
sudo iptables -L INPUT --line-numbers
sudo iptables -D INPUT 1

Testing the filter

While you can run whatever you want, the test case I made is for you to serve the assets folder with something like python -m http.server 8000, and then try to have a lookg at the files. Normally you should be able to get both files, but once the firewall runs, trying to access /secretshould not work anymore.