How to make per process firewall ?
Daniel.
danielhilst at gmail.com
Tue Apr 18 11:30:11 EDT 2017
I think docker or lxc may help you. You run the process(es) in a container
and attach a tap interface to the container, the process inside the
container can only see the attached interface.
Regards,
2017-04-18 4:28 GMT-03:00 Lev Olshvang <levonshe at yandex.com>:
> Hi all,
>
> I would like to constrain process (by name) or group of process to
> specific network interface and to specific port.
>
> Please advice if there is some cgroups controller or netfilter module?
>
> ThanX, Lev
>
>
> _______________________________________________
> Kernelnewbies mailing list
> Kernelnewbies at kernelnewbies.org
> https://lists.kernelnewbies.org/mailman/listinfo/kernelnewbies
>
>
--
“If you're going to try, go all the way. Otherwise, don't even start. ..."
Charles Bukowski
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.kernelnewbies.org/pipermail/kernelnewbies/attachments/20170418/e3c1a0e7/attachment.html
More information about the Kernelnewbies
mailing list