You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
|
1 year ago | |
---|---|---|
assets | 1 year ago | |
src | 1 year ago | |
.gitignore | 1 year ago | |
Cargo.lock | 1 year ago | |
Cargo.toml | 1 year ago | |
README.md | 1 year ago |
README.md
README
Zunft - Zauberei und nftables
Now using the new Rust 2021 edition :)
Useful commands
cargo +nightly build --release && sudo setcap cap_net_admin+ep ./target/release/zunft && cargo +nightly run --release
sudo iptables -t filter -A INPUT -j NFQUEUE --queue-num 0 --queue-bypass
sudo iptables -L INPUT --line-numbers
sudo iptables -D INPUT 1
Testing the filter
While you can run whatever you want, the test case I made is for you to serve the assets folder with something like python -m http.server 8000
, and then try to have a lookg at the files. Normally you should be able to get both files, but once the firewall runs, trying to access /secret
should not work anymore.