search

ukanth / afwall

AFWall+ (Android Firewall +) - iptables based firewall for Android
GNU General Public License v3.0
2.77k stars 456 forks source link

Multiple issues with my Galaxy S7 #943

Open Tobias-B-Besemer opened 5 years ago

Tobias-B-Besemer commented 5 years ago

I had multiple issues with AFWall+ and my Samsung Galaxy S7.

If I check all check-boxes (after a fresh install) of "Rules Behaviour" in Preferences and then select all check-boxes of "Any app" and refresh the page, the selection is gone.

If I now "Enable firewall", I get an error... screenshot_20190129-214316_afwall

..."Enable firewall" persists as option in the menu, but I can see the new rules in "Show rules".

Unchecking "Tor Control" in "Rules Behaviour" solves the issue.

Now I check "IPv6 support" in Preferences, flush the rules and try to enable the firewall. I get an "Error purging iptables" no matter if I activate or deactivate the firewall. screenshot_20190130-031259_afwall

Closing and reopening the app solves the issue.

I want to deactivate/block IPv6 with AFWall+, so I set the options "Only Control IPv6 Chains" and deactivate OUTPUT & FORWARD Chains. All work fine. I have XPosed installed, so I activate the AFWall+-Plugin in XPosed, reboot and try a download... I get a "AFWall+ denied access to Download Manager" even if I have checked the check-boxes at "Any app"... screenshot_20190129-213910_lineage roms

I now flushed the rules, tried to activate/deactivate the firewall, reopened the app several times, but always get a "Error purging iptables". After rebooting the device I can activate the firewall again. Even checking the boxes of "kernel" & "media" doesn't bring the Download Manager to download.

Now I have a look into the IPTables-Rules... There is a typo... "knox_vpn_fitler_exempt_cp"... "fitler" instead of "filter"... ...and I don't have Knox anymore on my device... screenshot_20190130-034806_afwall

...but Magisk with Busybox, but it shows in the log that I don't have it... screenshot_20190130-034915_afwall

I deactivate the Xposed-Module and reboot and after that the Download Manager work again.

But I still have the XPosed-Rules (Knox) in "IPTables Rules"...

I switch in nthe Preferences, under Binaries, to the system IPTables... ...then uninstall the app... ...and check in the terminal IPTables... They are still there !!! screenshot_20190130-040413_connectbot screenshot_20190130-040455_connectbot

Isn't it possible that the rules get deleted by an uninstall ???

What's about deleting the rules every time the user switch the firewall off ??? IMHO it's high likely that the user first switch off the firewall before he uninstall the app...

I hope my feedback helps a bit by the development...

ukanth commented 5 years ago

attach the error report from show rules menu here.

Tobias-B-Besemer commented 5 years ago

AFWall+ problem report - v3.0.4 - 1.txt AFWall+ problem report - v3.0.4 - 2.txt