Projects vpn-firewall

vpn-firewallProject
ActivePublic
Watch Project

Members (1)

Patrick (Patrick Schleizer)
a maintainer of Whonix
View All

Watchers

This project does not have any watchers.
View All

Details

Description

https://github.com/adrelanos/VPN-Firewall

Recent Activity
View All

Tue, May 16

Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

https://wiki.nftables.org/wiki-nftables/index.php/Atomic_rule_replacement

Tue, May 16, 10:32 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Mon, May 15

Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

https://wiki.nftables.org/wiki-nftables/index.php/Scripting

Mon, May 15, 6:21 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Some progress.

Mon, May 15, 5:23 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

May 9 2023

Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

In other words, iptabels is already symlinked to iptabels-nft anyhow. Therefore Whonix is already using iptabels-nft.

May 9 2023, 10:34 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

May 9 2023, 10:23 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Aug 9 2021

Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

In T509#20232, @ak88 wrote:

Any updates on this?

Aug 9 2021, 7:13 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

ak88 added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Any updates on this?

Aug 9 2021, 5:22 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Dec 11 2019

marmarek added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

It looks like bpfilter is in rather early stages, and it's few years until we'll see it in Debian.

Dec 11 2019, 2:35 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Patrick renamed T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables from Consider nftables as a replacement for iptables to Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Dec 11 2019, 1:11 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Or skip nftables and use Berkeley Packet Filter (BPF)?

Dec 11 2019, 1:10 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Patrick updated the task description for T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Dec 11 2019, 1:09 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Oct 21 2019

Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

NonaSuomy:

Added requested NFTables example from duclicsic #netfilter freenode.

Oct 21 2019, 5:33 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Oct 17 2019

HulaHoop added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Starting with Bullseye nftables will be the default:

Oct 17 2019, 5:29 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Dec 7 2018

Patrick removed a project from T655: review and merge vpn-firewall pull reqeust - 'Using capabilities instead of sudoers': Whonix 15.

Dec 7 2018, 11:02 AM · Whonix, vpn-firewall

Dec 3 2018

HulaHoop added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

https://researchut.com/post/migrating-firewall-to-nftables/

Dec 3 2018, 5:02 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Jun 20 2018

HulaHoop added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

nftables transition info:

Jun 20 2018, 1:03 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Jun 18 2018

Patrick updated the task description for T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Jun 18 2018, 2:23 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Apr 3 2017

Patrick created T655: review and merge vpn-firewall pull reqeust - 'Using capabilities instead of sudoers'.

Apr 3 2017, 10:24 AM · Whonix, vpn-firewall

Feb 5 2017

Patrick updated the task description for T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Feb 5 2017, 4:56 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Patrick updated the task description for T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Feb 5 2017, 4:45 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Patrick added a project to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables: iptables.

Feb 5 2017, 2:34 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Jan 31 2017

Patrick updated the task description for T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Jan 31 2017, 8:23 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Jan 30 2017

marmarek added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Please note that Qubes 4.0 will use nftables (if available):
https://github.com/QubesOS/qubes-issues/issues/974#issuecomment-251825457

Jan 30 2017, 11:06 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Patrick updated the task description for T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Jan 30 2017, 10:05 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Patrick updated the task description for T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Jan 30 2017, 10:04 AM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Jun 7 2016

Patrick renamed T460: fix shared VPN/Tor server leak bug from fix potential VPN_FIREWALL leak to fix shared VPN/Tor server leak bug.

Jun 7 2016, 7:18 PM · Whonix 14, usability-misc, vpn-firewall, whonix-gw-firewall, Whonix

May 11 2016

Patrick added a comment to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables.

Yes, one day, nftables may be a good idea. Also, one day, IPv6 support may not be avoided if it is so widespread that Whonix would stand out without having IPv6 support.

May 11 2016, 10:30 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

Patrick added projects to T509: Consider nftables / Berkeley Packet Filter (BPF) as a replacement for iptables: whonix-gw-firewall, whonix-ws-firewall, vpn-firewall.

May 11 2016, 10:25 PM · iptables, vpn-firewall, whonix-ws-firewall, whonix-gw-firewall, Whonix, refactoring, research

May 4 2016

Patrick updated the task description for T460: fix shared VPN/Tor server leak bug.

May 4 2016, 4:53 PM · Whonix 14, usability-misc, vpn-firewall, whonix-gw-firewall, Whonix

May 2 2016

Patrick closed T460: fix shared VPN/Tor server leak bug as Resolved.

Works.

May 2 2016, 9:40 PM · Whonix 14, usability-misc, vpn-firewall, whonix-gw-firewall, Whonix

May 1 2016

Patrick added a project to T460: fix shared VPN/Tor server leak bug: Whonix 14.

May 1 2016, 5:30 PM · Whonix 14, usability-misc, vpn-firewall, whonix-gw-firewall, Whonix

Jan 9 2016

Patrick added a comment to T460: fix shared VPN/Tor server leak bug.

Jan 9 2016, 4:44 PM · Whonix 14, usability-misc, vpn-firewall, whonix-gw-firewall, Whonix

Dec 29 2015

Patrick added a project to T460: fix shared VPN/Tor server leak bug: usability-misc.

Dec 29 2015, 9:09 PM · Whonix 14, usability-misc, vpn-firewall, whonix-gw-firewall, Whonix

Patrick added a comment to T460: fix shared VPN/Tor server leak bug.

simplify running OpenVPN as unprivileged user
https://github.com/Whonix/usability-misc/commit/91482787adedabaea6fa0e369784c0d4a05b41c0

Dec 29 2015, 9:08 PM · Whonix 14, usability-misc, vpn-firewall, whonix-gw-firewall, Whonix

Patrick changed the status of T460: fix shared VPN/Tor server leak bug from Open to Review.

create user 'tunnel'
https://github.com/Whonix/whonix-gw-firewall/commit/00724fd517e66fed0fb52051635aecb9f8e8dca3

Dec 29 2015, 8:42 PM · Whonix 14, usability-misc, vpn-firewall, whonix-gw-firewall, Whonix

Patrick created T460: fix shared VPN/Tor server leak bug.

Dec 29 2015, 8:36 PM · Whonix 14, usability-misc, vpn-firewall, whonix-gw-firewall, Whonix

Dec 28 2015

Patrick created T459: VPN Firewall should not allow non-VPN connections to the VPN server.

Dec 28 2015, 8:48 PM · Whonix 12, whonix-gw-firewall, whonix-ws-firewall, vpn-firewall, Whonix

Patrick created vpn-firewall.

Dec 28 2015, 8:46 PM