Questions tagged [firewall]
Software that controls what connections can be made to and from a network.
2,583 questions
0
votes
1
answer
43
views
How to blocking Apache probes? NAT -> gateway -> host
I have an Apache server that is 'exposed' outside the corporate firewall via NAT. I get probes constantly, and while I work to keep everything updated Im concerned that someone is going to find an ...
- 445
0
votes
0
answers
34
views
iptables: drop all packets that don't match a destination port
Advice
iptablesnetfilter
I want to drop all packets (from interface wg0) that are not coming in on port 51821.
Claude told me to use the rules
iptables -A INPUT -i wg0 -p udp --dport 51821 -j ACCEPT
...
- 1
0
votes
1
answer
138
views
OpenWRT: main/iot VLANs with transparency and security
I have two VLANs in my home network:
iot (for anything i consider an IoT device)
main (for everything
else)
I am using OpenWRT.
Each VLAN has its own subnet.
iot: 192.168.1.0/24
main: 192.168.0.0/...
- 111
0
votes
1
answer
60
views
Why can’t I access a local web server on computer 1 from local client on computer 2 without disabling the (public) Windows Firewall?
Computer 1 (Windows 10) and Computer 2 (Windows 11) and my phone are all connected to the same local network (192.168...). I'm trying to get Computer 2 and my phone to be able to access, via Chrome, a ...
- 109
0
votes
0
answers
87
views
Why won’t pfctl load a configuration file in macOS Tahoe (26.1)?
I need to block incoming TCP to a certain port for a project. pfctl seems like the right option but so far I haven't had any luck. I'm frustrated with the vague "syntax errors" it's giving ...
- 1
5
votes
2
answers
959
views
In Windows 11 firewall default setting, why are there two identical rules for ICMP, and what does (restrictive) in rule names mean?
I am currently looking into the default firewall configuration after a fresh install of Windows 11 Enterprise 25H2 with all available patches applied at the time of writing. There is no other software ...
- 2,111
0
votes
0
answers
88
views
Does it make sense to put a router into Bridge mode for the purposes of using it with a hardware firewall?
I have a fiberbox and a router.
I want to put a hardware firewall in between the two, but when I power on the firewall, it doesn't have any WAN address, presumably because the modem isn't assigning it ...
- 145
1
vote
0
answers
177
views
How to use nftables to accept connections on any port from a host with an established TCP session to a given port?
Using nftables, I want to create a rule that allows a host to connect to any TCP or UDP port if it already has an established connection to a specific TCP port.
So for example, remote host 1.2.3.4 ...
- 61
2
votes
1
answer
189
views
Can't find DDNS on Fortigate
I'm learning Fortigate, using the free licence, which is limited, I guess. I want to configure DDNS, but I can't find it; usually, it should be on the DNS or in the WAN interface configuration page. ...
- 75
0
votes
0
answers
38
views
How to find out which process to unblock in Lulu to allow Xcode to download a component?
I want to be surgical and allow only the rule/process or rules/processes that are blocking this download. I'm trying to avoid blanket disabling Lulu and then reenabling. There are too many Apple rules ...
- 187
1
vote
1
answer
628
views
How to limit (firewall / iptable like rules) the network access that a rootless podman container has to the world and vice versa, without sudo?
I have a rootless Podman container that is going to run, from my Ubuntu user machine, some critical code that is security sensitive, has access to secrets within the container, etc. For security ...
- 173
1
vote
0
answers
58
views
Does Android OS (as used on small laptops) have intrusion detection systems? [closed]
The goal is just to block network access except to specific programs (programs whose connections have known use), plus to list current sockets in use (to troubleshoot). The intended use is for Android ...
- 61
-1
votes
1
answer
283
views
Get rid of LocalSend entries in list of applications allowed through firewall?
I was trying to get LocalSend on my iPhone to connect with LocalSend on my Windows 11 laptop. When "Send" is selected on the laptop, it can see the iPhone's LocalSend, but the iPhone's ...
- 1,719
1
vote
1
answer
438
views
Program in WSL cannot resolve DNS, given mirrored networking mode and the host's firewall blocking arbitrary Outbound connections
In Windows 11 24H2 (64-bit), Windows Firewall is configured to block arbitrary Outbound Connections. That said, any program that wants to access the Internet must be specifically added to the Firewall'...
- 209
0
votes
0
answers
51
views
How to relax ufw rules to allow blocked requests with different IN and OUT networks
I have a DNS service that can't be reached for as long as ufw is active. I would like to find the most restrictive rule that allows instances to reach the DNS service. This is for a kubernetes cluster,...
- 143