Hi Tomasz, > Priority: Low > Complexity: C8 > - > - Extend the iptables code and provide a D-Bus API for personal firewalling. > + Owner: Tomasz Bursztyka <[email protected]> > + > + Discuss and implement a basic and safe firewalling strategy into > + Connman. Provide a D-Bus API for personal firewalling.
you might wanna have a look at NETLINK_FIREWALL and NETLINK_IPV6_FW. Or maybe also NETLINK_NFLOG. For the case of mobile devices with not high through-put it might be good enough to just rely everything to userspace and analyze the packets there to either drop or accept them. Maybe also extending things like NETLINK_FIREWALL with certain socket filters or other binary filters might be useful as well. Just have a look at it and try with a standalone prototype. Regards Marcel _______________________________________________ connman mailing list [email protected] http://lists.connman.net/listinfo/connman
