ifpw Process ID

IPFW, PF, IPF (but not limited) related discussion

ifpw Process ID

Postby kalman84 » 27 Oct 2010, 09:44

Hello,

I'm quite new to IPFW. I'd only like to know if it's possible to apply rules on the basis of the process ID (not user). I mean, how can I filter for example Skype packets?

I saw the "user ID" option but a "process ID" seems to not exist.

Thanks in advance for your availability.
kalman84
Junior Member
 
Posts: 5
Joined: 27 Oct 2010, 09:39

Postby phoenix » 27 Oct 2010, 19:56

Create a "skype" user, and run Skype as that user (via wrapper script using [man]su[/man] or [pman]sudo[/pman])?
Freddie

Help for FreeBSD: Handbook, FAQ, man pages, mailing lists.
User avatar
phoenix
MFC'd
 
Posts: 3349
Joined: 17 Nov 2008, 05:43
Location: Kamloops, BC, Canada

Postby kalman84 » 28 Oct 2010, 09:01

Thank you!

But I should create at least as many users as the number of Netrwork interfaces and then running each program as the user that corresponds to the selected interface.
Ok I know I'm not going to have like 100 different interfaces... but anyways is a quite... raw approach (forgive me the term, i think it's a very good idea I'm only looking for something more scalable).

Thanks a lot!
kalman84
Junior Member
 
Posts: 5
Joined: 27 Oct 2010, 09:39

Postby DutchDaemon » 28 Oct 2010, 13:14

Does IPFW handle group IDs as well?
User avatar
DutchDaemon
Old Fart
 
Posts: 10467
Joined: 16 Nov 2008, 20:17
Location: The Netherlands

Postby phoenix » 28 Oct 2010, 17:10

Yes, it does. UID and GID. Good call.
Freddie

Help for FreeBSD: Handbook, FAQ, man pages, mailing lists.
User avatar
phoenix
MFC'd
 
Posts: 3349
Joined: 17 Nov 2008, 05:43
Location: Kamloops, BC, Canada


Return to Firewalls

Who is online

Users browsing this forum: No registered users and 0 guests