Skip to content
/ eBPF Public

An eBPF code to allow traffic only at a specific TCP port (default 4040) for a given process name ("myprocess"). All the traffic to all other ports for only that process are be dropped.

3 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

rahulk789/eBPF

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

54 Commits
failed_attempts
failed_attempts
 
 
pass_4040
pass_4040
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

An eBPF code to allow traffic only at a specific TCP port (default 4040) for a given process name ("myprocess"). All the traffic to all other ports for only that process are be dropped.

myprocess tries to bind to two ports namely 4040 and 8080 . Our goal is to allow the 4040 port bind by prevent 8080 port bind. This is illustrated bellow.

Now lets say we opened another process named "s" which performs the same operations. We would not drop port 8080 bind attempt and allow all packets.

image

About

An eBPF code to allow traffic only at a specific TCP port (default 4040) for a given process name ("myprocess"). All the traffic to all other ports for only that process are be dropped.

Resources

Readme
Activity

Stars

3 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages