Jump to content
Not connected, Your IP: 18.188.113.189
WildWereWolf

Always-On Firewall Feature Coming?

Recommended Posts

Does anyone know if there are plans to add an always-on firewall feature to Eddie?

Traffic leaking is easy with the current way Eddie is required to be running to have the firewall enabled.  For example on startup, your computer will be leaking network data until Eddie can start up.  The only way to circumvent Eddie turning off the firewall upon exit is if you kill it.

It seems like all that is needed is to add an option to leave the firewall running, just don't disable it on exit.  That should be a very simple feature to add, no?

My searches in these forums haven't turned up anything, so as of now I'm going to assume implementing your own iptables rules is the normal way of doing this, but that's much more difficult than clicking a button and requires a lot of knowledge.  I was surprised that I didn't even come across any guides for how to accomplish it.
Thanks for the help!

 

 

Share this post


Link to post
13 hours ago, WildWereWolf said:

I was surprised that I didn't even come across any guides for how to accomplish it.


Do these help? Have a look into the How-To forum for a bit more.
13 hours ago, WildWereWolf said:

That should be a very simple feature to add, no?


I believe this will be more of a bug than a feature. And I faintly remember threads reporting this as a bug in earlier Eddie versions. :)You'd need knowledge to get out of it – or Eddie.

NOT AN AIRVPN TEAM MEMBER. USE TICKETS FOR PROFESSIONAL SUPPORT.

LZ1's New User Guide to AirVPN « Plenty of stuff for advanced users, too!

Want to contact me directly? All relevant methods are on my About me page.

Share this post


Link to post
@WildWereWolf

Hello!

It would be a very good idea to remain locked out from remote machines accessible only through remote desktop or ssh, and not IPMI interface. :D 

It is also an intrusive and permanent change of system settings which in the past was refused by the majority of our customers. Anyway, you can easily implement the feature in your Mint box with the proper three or four firewall rules (the support team already showed them to you when you asked for an iptables example). The solution is so fast (it takes literally a minute or less) that we don't see why you just don't implement it, end of the story.
You may also consider the AirVPN Suite with its feature networklockpersist and Eddie's feature Enable Network Lock at startup - however they are not exactly the same because first Bluetit daemon or Eddie process must be raised up, and then network lock is enforced, therefore providing an additional protection against "locking out". AirVPN Suite manual is here.

Kind regards
 

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image

×
×
  • Create New...