Looking to block all non-Tor traffic

kinetic · 01-20-2010, 11:21 PM

I'm trying to set up my laptop to be as anonymous as possible with Tor. I want to block all non-Tor traffic from leaving the computer. I was looking to find an firewall that filters by PID, so only Tor can send traffic out. Does something like this exist?

I also considered setting up some kind of TUN/TAP interface that tunneled through Tor's SOCKS proxy, but couldn't find anything that does this. Thanks in advance for any suggestions.

unSpawn · 01-21-2010, 04:13 PM

If you set proxy envvars, socksify all apps that don't accept proxy envvars including DNS, TOR by default runs with its own UID, so general DROP policies for all combined with an iptables UID match and logging rules to catch rogue traffic could help?

kinetic · 01-22-2010, 04:15 PM

Thanks, I didn't know about UID based matching. That will definately help me.