Created
August 24, 2014 04:14
-
-
Save patcon/cc11b8b8017614b7c90c to your computer and use it in GitHub Desktop.
orWall bug. Firefox. `iptables --table nat`
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- iptable-vnL-nat-no-auth.log 2014-08-24 01:01:04.304998976 -0300 | |
| +++ iptable-vnL-nat-browser-auth.log 2014-08-24 01:00:59.664999202 -0300 | |
| @@ -1,23 +1,24 @@ | |
| -Chain PREROUTING (policy ACCEPT 29 packets, 11334 bytes) | |
| +Chain PREROUTING (policy ACCEPT 6 packets, 2344 bytes) | |
| pkts bytes target prot opt in out source destination | |
| - 609 251K oem_nat_pre all -- * * 0.0.0.0/0 0.0.0.0/0 | |
| + 622 256K oem_nat_pre all -- * * 0.0.0.0/0 0.0.0.0/0 | |
| Chain INPUT (policy ACCEPT 0 packets, 0 bytes) | |
| pkts bytes target prot opt in out source destination | |
| -Chain OUTPUT (policy ACCEPT 216 packets, 14384 bytes) | |
| +Chain OUTPUT (policy ACCEPT 13 packets, 861 bytes) | |
| pkts bytes target prot opt in out source destination | |
| 5 504 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10058 /* Orbot bypasses itself. */ | |
| 33 2064 REDIRECT udp -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 0 udp dpt:53 /* Allow DNS queries */ redir ports 5400 | |
| 15 900 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10055 /* Force org.fdroid.fdroid through TransPort */ redir ports 9040 | |
| 27 1620 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10019 /* Force com.android.browser through TransPort */ redir ports 9040 | |
| 24 1440 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10061 /* Force org.tint through TransPort */ redir ports 9040 | |
| - 94 5640 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10059 /* Force org.mozilla.firefox through TransPort */ redir ports 9040 | |
| + 111 6660 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10059 /* Force org.mozilla.firefox through TransPort */ redir ports 9040 | |
| + 13 861 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10059 | |
| -Chain POSTROUTING (policy ACCEPT 11 packets, 660 bytes) | |
| +Chain POSTROUTING (policy ACCEPT 30 packets, 1881 bytes) | |
| pkts bytes target prot opt in out source destination | |
| - 284 17922 natctrl_nat_POSTROUTING all -- * * 0.0.0.0/0 0.0.0.0/0 | |
| - 284 17922 st_nat_POSTROUTING all -- * * 0.0.0.0/0 0.0.0.0/0 | |
| + 314 19803 natctrl_nat_POSTROUTING all -- * * 0.0.0.0/0 0.0.0.0/0 | |
| + 314 19803 st_nat_POSTROUTING all -- * * 0.0.0.0/0 0.0.0.0/0 | |
| Chain natctrl_nat_POSTROUTING (1 references) | |
| pkts bytes target prot opt in out source destination |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Chain PREROUTING (policy ACCEPT 6 packets, 2344 bytes) | |
| pkts bytes target prot opt in out source destination | |
| 622 256K oem_nat_pre all -- * * 0.0.0.0/0 0.0.0.0/0 | |
| Chain INPUT (policy ACCEPT 0 packets, 0 bytes) | |
| pkts bytes target prot opt in out source destination | |
| Chain OUTPUT (policy ACCEPT 13 packets, 861 bytes) | |
| pkts bytes target prot opt in out source destination | |
| 5 504 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10058 /* Orbot bypasses itself. */ | |
| 33 2064 REDIRECT udp -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 0 udp dpt:53 /* Allow DNS queries */ redir ports 5400 | |
| 15 900 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10055 /* Force org.fdroid.fdroid through TransPort */ redir ports 9040 | |
| 27 1620 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10019 /* Force com.android.browser through TransPort */ redir ports 9040 | |
| 24 1440 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10061 /* Force org.tint through TransPort */ redir ports 9040 | |
| 111 6660 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10059 /* Force org.mozilla.firefox through TransPort */ redir ports 9040 | |
| 13 861 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10059 | |
| Chain POSTROUTING (policy ACCEPT 30 packets, 1881 bytes) | |
| pkts bytes target prot opt in out source destination | |
| 314 19803 natctrl_nat_POSTROUTING all -- * * 0.0.0.0/0 0.0.0.0/0 | |
| 314 19803 st_nat_POSTROUTING all -- * * 0.0.0.0/0 0.0.0.0/0 | |
| Chain natctrl_nat_POSTROUTING (1 references) | |
| pkts bytes target prot opt in out source destination | |
| Chain oem_nat_pre (1 references) | |
| pkts bytes target prot opt in out source destination | |
| Chain st_nat_POSTROUTING (1 references) | |
| pkts bytes target prot opt in out source destination |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Chain PREROUTING (policy ACCEPT 29 packets, 11334 bytes) | |
| pkts bytes target prot opt in out source destination | |
| 609 251K oem_nat_pre all -- * * 0.0.0.0/0 0.0.0.0/0 | |
| Chain INPUT (policy ACCEPT 0 packets, 0 bytes) | |
| pkts bytes target prot opt in out source destination | |
| Chain OUTPUT (policy ACCEPT 216 packets, 14384 bytes) | |
| pkts bytes target prot opt in out source destination | |
| 5 504 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10058 /* Orbot bypasses itself. */ | |
| 33 2064 REDIRECT udp -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 0 udp dpt:53 /* Allow DNS queries */ redir ports 5400 | |
| 15 900 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10055 /* Force org.fdroid.fdroid through TransPort */ redir ports 9040 | |
| 27 1620 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10019 /* Force com.android.browser through TransPort */ redir ports 9040 | |
| 24 1440 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10061 /* Force org.tint through TransPort */ redir ports 9040 | |
| 94 5640 REDIRECT tcp -- * * 0.0.0.0/0 !127.0.0.1 tcpflags: 0x17/0x02 owner UID match 10059 /* Force org.mozilla.firefox through TransPort */ redir ports 9040 | |
| Chain POSTROUTING (policy ACCEPT 11 packets, 660 bytes) | |
| pkts bytes target prot opt in out source destination | |
| 284 17922 natctrl_nat_POSTROUTING all -- * * 0.0.0.0/0 0.0.0.0/0 | |
| 284 17922 st_nat_POSTROUTING all -- * * 0.0.0.0/0 0.0.0.0/0 | |
| Chain natctrl_nat_POSTROUTING (1 references) | |
| pkts bytes target prot opt in out source destination | |
| Chain oem_nat_pre (1 references) | |
| pkts bytes target prot opt in out source destination | |
| Chain st_nat_POSTROUTING (1 references) | |
| pkts bytes target prot opt in out source destination |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment