I tried AFWall, to control application network access, but found it to be buggy, and inconsistent. I don't need granular control. I just want to disallow some applications from accessing the network, so I removed AFWall, and just used the permissions in App info to disallow them from accessing the network. That woks fine, until I enable my VPN. When my VPN is active, all the disallowed applications are able to bypass the restriction.
Any input on how to prevent this on Lineage OS 16, would be greatly appreciated.
Related
Update: This is resolvable by setting the firewall to blacklist mode and inverting the selection. While I prefer whitelist mode, this will work until I can find a better solution.
Note, when inverting, make sure that "All Applications" isn't checked. It isn't obvious, because it should also be left unchecked in whitelist mode, but this will block everything in blacklist mode.
First off, this is on the Dev Edition (Sense) Lollipop release. Phone is S-off/bootloader unlocked, but I doubt that matters. I am using AFWall+ to manipulate the firewall (iptables) configuration.
The problem is USB tethering. DNS requests aren't getting through to the tethered device no matter what I do if iptables is configured. I checked the logs and they showed that process -11 (kernel) was blocked from sending UDP (DNS) to the tethered IP address. However, I specifically enabled the kernel, -12 (tethering DHCP & DNS), and root apps for good measure. Nothing.
However, it is JUST DNS. If I use an onboard terminal to nslookup the name, I can use the IP address from the tethered machine just fine. It appears that TCP isn't being blocked, just UDP. Further, local apps have no problem access the network in any way - it's just the USB tethered PC that is having trouble. I have not tried WiFi tethering yet.
I have tried my usual app, DroidWall, and now AFWall+, but neither can get it done. Something seems to have changed in Lollipop, because this used to work in KitKat.
Any ideas?
This may not be a phone specific question, but I have new (currently unrooted) Pixel 3XL thus thought I would post here.
Without naming particular apps, I am trying to see if it is any longer possible to connect remotely to my home server(s) to be able to watch and stream various live tv programming. There used to be a modified app that was able to bypass the vpn options.
I have both OpenVPN and Shadowsocks Socks5 connnections created and working, and I can connect with either to my home network. However, it appears both of these still rely on making use of the Android VPN service, and I think that is why certain apps will not work over VPN?
I had thought Shadowsocks would not use the android VPN, but it appears to still does.
I have not tried anything else yet regarding SSH tunnel, etc., and open to any ideas if/how you may be able hide or mask your vpn connection from select apps on your phone.
Thanks,
Hello. Could someone tell me a mobile network blocker to use on my device? I'm using Google Datally but I think there must be something more interesting for this purpose. I feel that it doesn't totally block the network, like, any application that I can control usage and release according to whatever I want.
I use adguard, mainly for ad blocking, it uses a VPN, and it has an integrated firewall that lets you control what apps will have network access, in wifi and data modes, also, if the allowed apps will have access while the acreen is on or off, I find this very useful
winol said:
I use adguard, mainly for ad blocking, it uses a VPN, and it has an integrated firewall that lets you control what apps will have network access, in wifi and data modes, also, if the allowed apps will have access while the acreen is on or off, I find this very useful
Click to expand...
Click to collapse
I'll try! Thanks for the help
Has anyone foynd a way to change the cell DNS?
I've tried apps like the 1.1.1.1 but it just sets up a vpn which still uses the cell DNS (which is very slow)
You can use hidden settings for miui app from play store and edit the dns that way. It works for wifi and mobile data for me.
Thanks, I've tried a few of these apps and haven't found any of them to work
I'm trying to tweaking my phone to improve privacy. When I disable Samsung Secure Wi-Fi (com.samsung.android.fast) I can't use KDE Connect for example, a file sharing tool (it does much more than that), doesn't work. It can only pair my computer when I allow usage access permission for this app and reboot the phone.
However, Secure Wi-Fi is disabled when I go to Settings > Biometrics and Security > Secure Wi-Fi, because it asks to login in a Samsung Account (I don't have one). Maybe is actually active without an account?