search

ukanth / afwall

AFWall+ (Android Firewall +) - iptables based firewall for Android
GNU General Public License v3.0
2.78k stars 455 forks source link

Essentially just stopped Working. #613

Closed Ngreen1980 closed 7 years ago

Ngreen1980 commented 7 years ago

Ive ran this app for sometime now and all of sudden it just stopped working all together. It blocks nothing now. I've tried the obvious enable/disable. Uninstall/reinstall. Nothing seems to work. Nexus 6P 6.0.1 HELP!

Ngreen1980 commented 7 years ago

{"default":{"com.instagram.android":{"1":true}},"prefs":[{"notifyAppInstall":"true"},{"fixDownloadManagerLeak":"true"},{"enableRoam":"false"},{"oldLogView":"true"},{"ipurchaseddonatekey":"false"},{"enableIPv6":"false"},{"enableAdmin":"true"},{"appVersion":"15800"},{"fixLeak":"true"},{"sysColor":"-10432"},{"activeNotification":"false"},{"App Restrictions":"AAAAAA==\n "},{"enableDeviceCheck":"false"},{"hasRoot":"true"},{"locale":"en"},{"disableIcons":"false"},{"disableTaskerToast":"false"},{"showFilter":"false"},{"enableVPN":"false"},{"passSetting":"p0"},{"activeRules":"true"},{"enableLAN":"true"},{"patternMax":"3"},{"sort":"s1"}]} ========== IPv4 Rules ========== Chain INPUT (policy ACCEPT 2832 packets, 2160K bytes) pkts bytes target prot opt in out source destination 40004 51M bw_INPUT all -- * * 0.0.0.0/0 0.0.0.0/0 40004 51M fw_INPUT all -- * * 0.0.0.0/0 0.0.0.0/0 Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- wlan0 r_rmnet_data0 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT all -- r_rmnet_data0 wlan0 0.0.0.0/0 0.0.0.0/0 0 0 oem_fwd all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 fw_FORWARD all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 bw_FORWARD all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 natctrl_FORWARD all -- * * 0.0.0.0/0 0.0.0.0/0 Chain OUTPUT (policy ACCEPT 2703 packets, 516K bytes) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 mark match 0x8 0 0 ACCEPT all -- * r_rmnet_data0 0.0.0.0/0 0.0.0.0/0 21774 2189K afwall all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 DROP udp -- * r_rmnetdata8 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 /* Drop SSDP on WWAN / 0 0 DROP udp -- * r_rmnetdata7 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * r_rmnetdata6 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * r_rmnetdata5 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * r_rmnetdata4 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * r_rmnetdata3 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * r_rmnetdata2 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * r_rmnetdata1 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * r_rmnetdata0 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * rmnetdata7 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * rmnetdata6 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * rmnetdata5 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * rmnetdata4 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * rmnetdata3 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * rmnetdata2 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * rmnetdata1 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN _/ 0 0 DROP udp -- * rmnetdata0 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 / Drop SSDP on WWAN */ 25373 2822K oem_out all -- * * 0.0.0.0/0 0.0.0.0/0 25373 2822K fw_OUTPUT all -- * * 0.0.0.0/0 0.0.0.0/0 18643 2488K st_OUTPUT all -- * * 0.0.0.0/0 0.0.0.0/0 18643 2488K bw_OUTPUT all -- * * 0.0.0.0/0 0.0.0.0/0 Chain afwall (1 references) pkts bytes target prot opt in out source destination 0 0 afwall-wifi all -- * eth+ 0.0.0.0/0 0.0.0.0/0 19515 2123K afwall-wifi all -- * wlan+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-wifi all -- * tiwlan+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-wifi all -- * ra+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-wifi all -- * bnep+ 0.0.0.0/0 0.0.0.0/0 9 612 afwall-3g all -- * rmnet+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * pdp+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * uwbr+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * wimax+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * vsnet+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * rmnet_sdio+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * ccmni+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * qmi+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * svnet0+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * ccemni+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * wwan+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * cdma_rmnet+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * usb+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * rmnet_usb+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * clat4+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * cc2mni+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * bond1+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * rmnet_smux+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * ccinet+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * v4-rmnet+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * seth_w+ 0.0.0.0/0 0.0.0.0/0 0 0 afwall-3g all -- * v4-rmnet_data+ 0.0.0.0/0 0.0.0.0/0 Chain afwall-3g (22 references) pkts bytes target prot opt in out source destination 9 612 afwall-3g-postcustom all -- * * 0.0.0.0/0 0.0.0.0/0 Chain afwall-3g-fork (2 references) pkts bytes target prot opt in out source destination 0 0 afwall-3g-home all -- * * 0.0.0.0/0 0.0.0.0/0 Chain afwall-3g-home (1 references) pkts bytes target prot opt in out source destination 0 0 afwall-reject all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10095 Chain afwall-3g-postcustom (1 references) pkts bytes target prot opt in out source destination 0 0 afwall-3g-fork all -- * * 0.0.0.0/0 0.0.0.0/0 Chain afwall-3g-roam (0 references) pkts bytes target prot opt in out source destination Chain afwall-3g-tether (0 references) pkts bytes target prot opt in out source destination 0 0 afwall-3g-fork all -- * * 0.0.0.0/0 0.0.0.0/0 Chain afwall-reject (1 references) pkts bytes target prot opt in out source destination 0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable Chain afwall-vpn (0 references) pkts bytes target prot opt in out source destination Chain afwall-wifi (5 references) pkts bytes target prot opt in out source destination 19515 2123K afwall-wifi-postcustom all -- * * 0.0.0.0/0 0.0.0.0/0 Chain afwall-wifi-fork (2 references) pkts bytes target prot opt in out source destination 562 39742 afwall-wifi-lan all -- * * 0.0.0.0/0 10.19.13.0/24 18879 2065K afwall-wifi-wan all -- * * 0.0.0.0/0 !10.19.13.0/24 Chain afwall-wifi-lan (1 references) pkts bytes target prot opt in out source destination Chain afwall-wifi-postcustom (1 references) pkts bytes target prot opt in out source destination 19441 2105K afwall-wifi-fork all -- * * 0.0.0.0/0 0.0.0.0/0 Chain afwall-wifi-tether (0 references) pkts bytes target prot opt in out source destination 0 0 afwall-wifi-fork all -- * * 0.0.0.0/0 0.0.0.0/0 Chain afwall-wifi-wan (1 references) pkts bytes target prot opt in out source destination Chain bw_FORWARD (1 references) pkts bytes target prot opt in out source destination Chain bw_INPUT (1 references) pkts bytes target prot opt in out source destination 3722 5513K all -- * * 0.0.0.0/0 0.0.0.0/0 ! quota globalAlert: 2097152 bytes 3 249 bw_costly_rmnet_data0 all -- rmnet_data0 * 0.0.0.0/0 0.0.0.0/0 39323 51M all -- * * 0.0.0.0/0 0.0.0.0/0 owner socket exists Chain bw_OUTPUT (1 references) pkts bytes target prot opt in out source destination 951 66759 all -- * * 0.0.0.0/0 0.0.0.0/0 ! quota globalAlert: 2097152 bytes 0 0 bw_costly_rmnet_data0 all -- * rmnet_data0 0.0.0.0/0 0.0.0.0/0 18504 2479K all -- * * 0.0.0.0/0 0.0.0.0/0 owner socket exists Chain bw_costly_rmnet_data0 (2 references) pkts bytes target prot opt in out source destination 3 249 bw_penalty_box all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 ! quota rmnet_data0: 9223372036854775807 bytes reject-with icmp-port-unreachable Chain bw_costly_shared (0 references) pkts bytes target prot opt in out source destination 0 0 bw_penalty_box all -- * * 0.0.0.0/0 0.0.0.0/0 Chain bw_happy_box (0 references) pkts bytes target prot opt in out source destination Chain bw_penalty_box (2 references) pkts bytes target prot opt in out source destination 0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10095 reject-with icmp-port-unreachable Chain fw_FORWARD (1 references) pkts bytes target prot opt in out source destination Chain fw_INPUT (1 references) pkts bytes target prot opt in out source destination 36958 50M fw_standby all -- * * 0.0.0.0/0 0.0.0.0/0 Chain fw_OUTPUT (1 references) pkts bytes target prot opt in out source destination 21774 2189K fw_standby all -- * * 0.0.0.0/0 0.0.0.0/0 Chain fw_dozable (0 references) pkts bytes target prot opt in out source destination 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 0-9999 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 Chain fw_standby (2 references) pkts bytes target prot opt in out source destination 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10141 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10000 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10003 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10004 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10005 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10009 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10010 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10015 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10016 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10019 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10020 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10021 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10023 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10024 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10025 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10026 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10028 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10030 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10031 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10032 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10033 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10034 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10037 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10038 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10040 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10041 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10042 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10045 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10047 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10048 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10049 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10050 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10052 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10054 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10055 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10057 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10060 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10063 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10067 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10070 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10073 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10074 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10075 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10076 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10079 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10080 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10081 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10082 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10084 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10085 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10086 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10088 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10090 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10093 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10094 72 4320 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10096 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10099 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10100 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10105 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10106 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10108 7 420 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10109 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10110 110 6600 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10112 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10113 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10115 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10116 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10117 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10118 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10120 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10121 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10122 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10123 144 8640 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10125 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10127 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10128 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10129 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10130 135 8100 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10131 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10134 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10135 5890 284K DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10136 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10137 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10138 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10139 42 2520 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10143 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10145 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10146 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10147 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10150 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10151 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10152 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10154 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10155 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10156 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10159 358 22031 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 owner UID match 10160 Chain natctrl_FORWARD (1 references) pkts bytes target prot opt in out source destination 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 Chain natctrl_tether_counters (0 references) pkts bytes target prot opt in out source destination Chain oem_fwd (1 references) pkts bytes target prot opt in out source destination Chain oem_out (1 references) pkts bytes target prot opt in out source destination Chain st_OUTPUT (1 references) pkts bytes target prot opt in out source destination Chain st_clear_caught (2 references) pkts bytes target prot opt in out source destination Chain st_clear_detect (0 references) pkts bytes target prot opt in out source destination 0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 connmark match 0x2000000/0x2000000 reject-with icmp-port-unreachable 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 connmark match 0x1000000/0x1000000 0 0 CONNMARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 u32 "0x0>>0x16&0x3c@0xc>>0x1a&0x3c@0x0&0xffff0000=0x16030000&&0x0>>0x16&0x3c@0xc>>0x1a&0x3c@0x4&0xff0000=0x10000" CONNMARK or 0x1000000 0 0 CONNMARK udp -- * * 0.0.0.0/0 0.0.0.0/0 u32 "0x0>>0x16&0x3c@0x8&0xffff0000=0x16fe0000&&0x0>>0x16&0x3c@0x14&0xff0000=0x10000" CONNMARK or 0x1000000 0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 connmark match 0x1000000/0x1000000 0 0 st_clear_caught tcp -- * * 0.0.0.0/0 0.0.0.0/0 state ESTABLISHED u32 "0x0>>0x16&0x3c@0xc>>0x1a&0x3c@0x0&0x0=0x0" 0 0 st_clear_caught udp -- * * 0.0.0.0/0 0.0.0.0/0 Chain st_penalty_log (0 references) pkts bytes target prot opt in out source destination 0 0 CONNMARK all -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK or 0x1000000 0 0 NFLOG all -- * * 0.0.0.0/0 0.0.0.0/0 Chain st_penalty_reject (0 references) pkts bytes target prot opt in out source destination 0 0 CONNMARK all -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK or 0x2000000 0 0 NFLOG all -- * * 0.0.0.0/0 0.0.0.0/0 0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable ================== Network interfaces ================== r_rmnet_data6: unknown r_rmnet_data5: unknown r_rmnet_data7: unknown r_rmnet_data8: unknown r_rmnet_data0: unknown r_rmnet_data2: unknown r_rmnet_data1: unknown r_rmnet_data3: unknown r_rmnet_data4: unknown rmnet_data6: 3G rmnet_data5: 3G rmnet_data7: 3G rmnet_data0: 3G rmnet_data1: 3G rmnet_data3: 3G rmnet_data2: 3G rmnet_data4: 3G rmnet_ipa0: 3G lo: unknown sit0: unknown wlan0: wifi dummy0: unknown ======== ifconfig ======== rmnet_ipa0 Link encap:UNSPEC UP RUNNING MTU:2000 Metric:1 RX packets:5675 errors:0 dropped:0 overruns:0 frame:0 TX packets:6051 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:3454903 TX bytes:1205876 r_rmnet_data7 Link encap:UNSPEC [NO FLAGS] MTU:3000 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 r_rmnet_data4 Link encap:UNSPEC [NO FLAGS] MTU:3000 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 rmnet_data1 Link encap:UNSPEC [NO FLAGS] MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 rmnet_data3 Link encap:UNSPEC [NO FLAGS] MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 wlan0 Link encap:Ethernet HWaddr 1C:67:58:EE:68:A5 inet addr:10.19.13.155 Bcast:10.19.13.255 Mask:255.255.255.0 inet6 addr: fe80::1e67:58ff:feee:68a5/64 Scope: Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:37103 errors:0 dropped:0 overruns:0 frame:0 TX packets:15078 errors:0 dropped:2 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:49956268 TX bytes:2068210 rmnet_data5 Link encap:UNSPEC [NO FLAGS] MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 r_rmnet_data1 Link encap:UNSPEC [NO FLAGS] MTU:3000 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 rmnet_data7 Link encap:UNSPEC inet6 addr: fe80::cfa0:c0db:1592:af63/64 Scope: Link inet6 addr: 2607:fb90:3da:557d:cfa0:c0db:1592:af63/64 Scope: Global UP RUNNING MTU:1500 Metric:1 RX packets:3 errors:0 dropped:0 overruns:0 frame:0 TX packets:7 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:312 TX bytes:508 dummy0 Link encap:Ethernet HWaddr 5E:1D:4B:A2:E3:F7 inet6 addr: fe80::5c1d:4bff:fea2:e3f7/64 Scope: Link UP BROADCAST RUNNING NOARP MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:10 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:0 TX bytes:840 r_rmnet_data6 Link encap:UNSPEC [NO FLAGS] MTU:3000 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 r_rmnet_data3 Link encap:UNSPEC [NO FLAGS] MTU:3000 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 r_rmnet_data8 Link encap:UNSPEC [NO FLAGS] MTU:3000 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 rmnet_data0 Link encap:UNSPEC [NO FLAGS] MTU:1500 Metric:1 RX packets:5672 errors:0 dropped:0 overruns:0 frame:0 TX packets:6038 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:3759974 TX bytes:1204952 r_rmnet_data0 Link encap:UNSPEC inet6 addr: fe80::2f4f:de3:1b8f:8508/64 Scope: Link UP RUNNING MTU:3000 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:6 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:416 rmnet_data2 Link encap:UNSPEC [NO FLAGS] MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 rmnet_data4 Link encap:UNSPEC [NO FLAGS] MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 sit0 Link encap:IPv6-in-IPv4 NOARP MTU:1480 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:0 TX bytes:0 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope: Host UP LOOPBACK RUNNING MTU:65536 Metric:1 RX packets:335 errors:0 dropped:0 overruns:0 frame:0 TX packets:335 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:31799 TX bytes:31799 r_rmnet_data5 Link encap:UNSPEC [NO FLAGS] MTU:3000 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 rmnet_data6 Link encap:UNSPEC [NO FLAGS] MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 r_rmnet_data2 Link encap:UNSPEC [NO FLAGS] MTU:3000 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 TX bytes:0 =========== System info =========== Android version: 6.0.1 Manufacturer: Huawei Model: Nexus 6P Build: MTC20F Active interface: wifi Tether status: no Roam status: no IPv4 subnet: 10.19.13.155/24 IPv6 subnet: fe80::1e67:58ff:feee:68a5/64 /system/bin/su: not present /system/xbin/su: not present /system/app/Superuser.apk: not present Superuser: eu.chainfire.supersu v2.78 =========== Preferences =========== App Restrictions: AAAAAA== activeNotification: false activeRules: true appVersion: 15800 disableIcons: false disableTaskerToast: false enableAdmin: true enableDeviceCheck: false enableIPv6: false enableLAN: true enableRoam: false enableVPN: false fixDownloadManagerLeak: true fixLeak: true hasRoot: true ipurchaseddonatekey: false locale: en notifyAppInstall: true oldLogView: true passSetting: p0 patternMax: 3 showFilter: false sort: s1 sysColor: -10432 Profile Mode : blacklist Status : Enabled ====== Logcat ====== 19:08:21 Starting root shell... 19:08:21 [libsuperuser] [SU%] START 19:08:21 Root shell is open 19:08:52 isWifiApEnabled is false

ukanth commented 7 years ago

Sorry, But it's impossible to read it. Just use export option (menu->firewall rules->export to SDCard) and attach it here.

Ngreen1980 commented 7 years ago

Thanks.....

Also something very odd is the log has been completely empty since this started.

Cheers, Nate

On Thu, Nov 10, 2016 at 10:30 PM -0500, "ukanth" notifications@github.com<mailto:notifications@github.com> wrote:

Sorry, But it's impossible to read it. Just use export option (menu->firewall rules->export to SDCard) and attach it here.

You are receiving this because you authored the thread. Reply to this email directly, view it on GitHubhttps://github.com/ukanth/afwall/issues/613#issuecomment-259872667, or mute the threadhttps://github.com/notifications/unsubscribe-auth/AWTqZDb6Qgg9opLfq1mdZobmvLpL62uCks5q8-E5gaJpZM4KvSVn.

Ngreen1980 commented 7 years ago

Update... It appears that immediately after a reboot it works as intended. But the first time I either disable and re-enable it fails to block anything. As well as if I connect to WiFi, then disconnect it fails to block anything (I only block over cellular). Don't know if that helps but figured I should let you know.

ukanth commented 7 years ago

Sure, thanks for the update. Please re-open if it occurs again.

Ngreen1980 commented 7 years ago

Don't close it. It still doesn't work. Please re-read my update.

ukanth commented 7 years ago

I need firewall rules in proper format. Please do the following when you have issue from console/terminal

iptables -S

Or

Menu->Firewall Rules->Export to SDCard ( attach the file here)

Ngreen1980 commented 7 years ago

Cheers, Nate

On Fri, Nov 11, 2016 at 11:26 PM -0500, "ukanth" notifications@github.com<mailto:notifications@github.com> wrote:

I need firewall rules in proper format. Please do the following when you have issue from console/terminal

iptables -S

Or

Menu->Firewall Rules->Export to SDCard ( attach the file here)

You are receiving this because you authored the thread. Reply to this email directly, view it on GitHubhttps://github.com/ukanth/afwall/issues/613#issuecomment-260101015, or mute the threadhttps://github.com/notifications/unsubscribe-auth/AWTqZLm2TAhEx7tOgMUEpNhgqR3Dp3_dks5q9UALgaJpZM4KvSVn.

Ngreen1980 commented 7 years ago

Just sent them via email.... Did you get them?

ukanth commented 7 years ago

No, Haven't received it.

Ngreen1980 commented 7 years ago

IPv4rules.txt afwall-backup-all-2016-11-11-23-25-35.txt

Ngreen1980 commented 7 years ago

There ya go.

ukanth commented 7 years ago

Can you post iptables -S ?

Also do you have Data saver enabled ?

Ngreen1980 commented 7 years ago

Unless you know of a way to pull it without a computer, I cannot post Iptables at the moment. No laptop with me.

I'm running 6.0.1, data saver isn't available until 7.

ukanth commented 7 years ago

Kindly do the following,

  1. Menu->Firewall rules-> Flush rules
  2. Main menu -> Apply rules
  3. Reboot

Now check the behavior if it blocks or not. If not , same report as before. Thanks for helping me out,

Ngreen1980 commented 7 years ago

WEIRD! Ok.... Well that seemed to do it for only a few minutes. I even enabled and disabled WiFi multiple times to make sure it continued to work....and it did. Then I turned wifi back on opened up github, to write back to you. Then just BECAUSE, I thought I would try it one more time. So I turned off wifi, opened an app and this time it allowed it out.

Ngreen1980 commented 7 years ago

IPv4rules.txt afwall-backup-all-2016-11-12-00-40-05.txt

Latest and greatest!

ukanth commented 7 years ago

Ok, could you please enable ipv6 from preference and reapply the rules and see if connects ?

Ngreen1980 commented 7 years ago

Done and so far so good. No reboot required. Swapped between wifi and cellular multiple times and it blocks everything when on cellular as intended.

Can you explain why IPv6 option had an affect on this?