Skip to content
/ nftables Public

Configuration of Nftables as a Firewall to secure you network and obtain access to TOR.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Incanato/nftables

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

32 Commits
etc
etc
 
 
README.md
README.md
 
 

Repository files navigation

nftables

Firewall

       ----------->

TOR .............. SERVIDOR/USER

      <-----------

Filter by: MACADDRESS ------> IP -------> PORT

Allow only MACADDRESS permited in the PRIVATE NETWORK. Allow only IP permited in the PRIVATE NETWORK.

Allow only TOR IP with PORT. Allow only User Level Protocols in SERVIDOR/USER.

Deny the rest MACADDRES in the PRIVATE NETWORK. Deny the rest IP in the PRIVATE NETWORK. Deny all TOP IP with no specific PORT.

BLOCK/REDIRECT the rest of PROTOCOLS (system, user and protected) not used.

Environment:

Using FEDORA as Operation System. Minimum installation. Uninstall firewalld unbound iptables. Install nftables.

By default:

    All is blocked, macadress IP Protocol.

In specific:

    Try to block or deny  specific macadress IP Protocol.

Management:

Allow only SSH access to specific IP. Deny the rest IP in the PRIVATE NETWORK.

Proxy:

Allow only SQUID access to specific IP. Deny the rest IP in the PRIVATE NETWORK.

DNS:

Blocked in the PRIVATE NETWORK. Only access via LOCALHOST from SQUID.

About

Configuration of Nftables as a Firewall to secure you network and obtain access to TOR.

Topics

firewall tor nftables

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published