Reputation: 739
Programmatically modify firewall rules Linux
I need to assign rules in my firewall using programming.. I mean I want to create a web app in which user can select the firewall rules for their ip address and those rules will be assigned to that IP. There would be only one firewall machine. I think a firewall with nice api will do this. Anyone knows open source firewall with good api??
Upvotes: 2
Views: 1232
Answers (1)
Reputation: 91270
The linux firewall is called netfilter and is a part of the linux kernel. There are various userland tools which manipulates it, most notably the de-facto standard utility iptables. As you need to be root in order to modify firewall rules, and web servers should not run as root, I'd recommend a two-tier approach to solving this: A web app which modifies a set of rules (in a SQL db, or a config file), and a daemon running as root which monitors for rule changes and applies them by executing iptables.
Upvotes: 4
Related Questions
- How to Read and Add Rules in Windows Firewall with Python
- How can I programmatically manage iptables rules on the fly?
- How can I programmatically manage pf rules on the fly?
- Updating existing firewall rule using API
- Add Rich Rules in Firewalld using Python3 Loop
- How to programmatically open ports on firewall appliances?
- Using Windows Firewall programmatically
- Modify windows firewall in a C program
- Dynamic firewall rules or iptables API for Ubuntu 12?
- Is there any API for changing firewall rules on Windows Server 2008?