Hello, I use iptables to restrict connections by IP, protocol, and port. However, it doesn't seem to support the creation of rules based on executable file paths. The Windows 7/8 and 10 come with a native firewall that lets the user to select a file path and to create rules for it. I've found various answers on Stackoverflow and similars, but all of them give a solution that only works with old versions of iptables. I really need to know how to use iptables or netfilter to accomplish this task, because I want to create a white list of allowed executables that can access remote servers.

Hello and welcome to LQ.

What happens when you try something like this? http://serverfault.com/questions/550...grams-on-linux

See notes at bottom for naming groups.

1 members found this post helpful.

Welcome.

If your distro has apparmor, then you can use it to a certain extent. It has limited capabilities to restrict networking but it does have something. The apparmor profiles are applied based on the application's path. The newer versions of apparmor have more capabilities. Apparently there's a long-standing ticket open in the bug tracker in regards to more fine-grained networking restrictions, but do check to see what your distro has.

1 members found this post helpful.

I think the best option for you is iptables as jefro mention.

Thanks for your answer, jefro. I thought this old method wasn't working anymore, but I was wrong.