Iptables Killswitch

IFZDP

Freshly Joined Member
Hello, I want to ask the community or some member of the team, if it wouldnt make sense to create general iptables, for a general killswitch like for example Mullvad (not recommending to use mullvad) provides on their site.

Mullvad:

sudo iptables -P OUTPUT DROP
sudo iptables -A OUTPUT -o tun+ -j ACCEPT
sudo iptables -A INPUT -i lo -j ACCEPT
sudo iptables -A OUTPUT -o lo -j ACCEPT
sudo iptables -A OUTPUT -d 255.255.255.255 -j ACCEPT
sudo iptables -A INPUT -s 255.255.255.255 -j ACCEPT
sudo iptables -A OUTPUT -o eth+ -p udp -m multiport --dports 53,1300:1302,1194:1197 -d 141.98.255.0/24,193.138.218.0/24,45.83.220.0/24,185.213.152.0/24,185.213.154.0/24,185.65.135.0/24,185.65.134.0/24 -j ACCEPT
sudo iptables -A OUTPUT -o eth+ -p tcp -m multiport --dports 53,443 -d 141.98.255.0/24,193.138.218.0/24,45.83.220.0/24,185.213.152.0/24,185.213.154.0/24,185.65.135.0/24,185.65.134.0/24 -j ACCEPT
sudo ip6tables -P OUTPUT DROP
sudo ip6tables -A OUTPUT -o tun+ -j ACCEPT



that are just general rules for an effective killswitch, maybe it does make sense for perfect privacy to have something like that also for linux people, with all server ipranges for perfect privacy servers.
 
Not recommending to use some service? Generally because this is the forum of another service? Or are there rumors? If rumors, you can but don't have to explain.
 
Back
Top