Skip to content

0xahzam/xdpwall

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
README.md
README.md
 
 
firewall.c
firewall.c
 
 
policies.h
policies.h
 
 

Repository files navigation

xdpwall

A minimal XDP/eBPF firewall that filters packets at the driver level, bypassing the normal networking stack. Built for learning purposes only.

Current Policy

  • Block all traffic from 8.8.8.8
  • Allow only UDP port 53 (DNS), block all other UDP
  • Block TCP port 80 (HTTP)

Build

Compile the eBPF object file:

clang -O2 -g -target bpf -D__TARGET_ARCH_arm64 \
  -I/usr/include \
  -I/usr/include/bpf \
  -c firewall.c -o firewall.o

Attach

Attach the firewall to a network interface:

sudo ip link set dev <interface> xdp obj firewall.o sec firewall

Monitor

Watch dropped packets in realtime:

sudo cat /sys/kernel/debug/tracing/trace_pipe

Detach

Remove the firewall:

sudo ip link set dev <interface> xdp off

About

Minimal XDP/eBPF firewall for learning purposes

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages