Thread: KUAL Firewall with BBB filter
View Single Post
Old 02-17-2013, 02:55 AM   #14
baf
Evangelist
baf ought to be getting tired of karma fortunes by now.baf ought to be getting tired of karma fortunes by now.baf ought to be getting tired of karma fortunes by now.baf ought to be getting tired of karma fortunes by now.baf ought to be getting tired of karma fortunes by now.baf ought to be getting tired of karma fortunes by now.baf ought to be getting tired of karma fortunes by now.baf ought to be getting tired of karma fortunes by now.baf ought to be getting tired of karma fortunes by now.baf ought to be getting tired of karma fortunes by now.baf ought to be getting tired of karma fortunes by now.
 
Posts: 404
Karma: 2200000
Join Date: May 2012
Device: kt
Quote:
Originally Posted by knc1 View Post
Sorry - Missed this one earlier.

The userland application (iptables) seems to be complete, if not, twobob has already built the newest and greatest.

The factory kernel on the other hand is missing a lot of the netfilter modules.
Will have to build those and ship them as part of the BBB (and later, the kWall) button set.

For instance: lab126 did not build the "REJECT" module.
Which is required for proper protocol control operation.
I once built netfilter kernel modules for KT 5.3.2 (attached). I had an idea to block outgoing connections by process id (-m owner --pid-owner), but it turned out that this option is not supported by modern kernels anymore.
Attached Files
File Type: zip netfilter.zip (87.1 KB, 521 views)
baf is offline   Reply With Quote