mranv / firewallrs

FirewallRS is a Rust application designed to enforce strict firewall policies using iptables with sudo privileges. It ensures a secure network environment by allowing traffic only from specific IP addresses and ports while dropping all other incoming and outgoing traffic by default.

1. Installation and Setup: Ensure that both sudo and iptables are installed on your system. If not found, the application automatically attempts to install them based on the detected Linux distribution (Fedora or Ubuntu).

2. Execution: Run the firewallrs executable. Upon execution, the application checks for the presence of sudo and iptables, and configures iptables rules accordingly.

3. Strict Policy Enforcement: FirewallRS enforces a strict policy where only traffic from/to a specific IP address and port is allowed. All other traffic is dropped by default.

./target/release/firewallrs

To revert back the iptables configuration set by the implemented code, you can execute the following commands:

sudo iptables -P INPUT ACCEPT
sudo iptables -P OUTPUT ACCEPT
sudo iptables -F

These commands will:

1. Set the default policy for incoming traffic (INPUT) and outgoing traffic (OUTPUT) to ACCEPT.
2. Flush all the rules in the iptables ruleset (-F option).

Executing these commands will revert the iptables configuration back to allowing all incoming and outgoing traffic by default and remove any custom rules that were added.

• The application checks for the presence of sudo and iptables, installs them if necessary, and configures iptables rules.
• It ensures strict policy enforcement, allowing only specified traffic while dropping all others.
• Examples of usage and system responses are provided within the repository's README.

You can find the source code and additional information about FirewallRS in the GitHub repository.

Contributions to FirewallRS are welcome! If you encounter any issues or have suggestions for improvement, feel free to open an issue or submit a pull request.