this post was submitted on 09 Sep 2023
6 points (100.0% liked)

Linux

5222 readers
6 users here now

A community for everything relating to the linux operating system

Also check out !linux_memes@programming.dev

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 1 year ago
MODERATORS
 

cross-posted from: https://programming.dev/post/2768533

I have a vm for which I have s specific whitelist only firewall. It is supposed to only allow connections to the IPs an app connects to when syncing.

I first got the sync server IP's listening to tcpdump, then when I had the IP's I activated the whitelist.

This worked perfectly for some time, but now it appears that the IP's have changed. I could do the same thing again but repeating the process regularly is annoying and defeats the whole purpose of only ever allowing network connections to specific whitelisted serves.

Alternatively, I could set up a process to only allow network traffic from that app somewhat.

Using debian-11 btw.

Any help is appreceated !!!

EDIT: I don't own the sync servers, my app simply connects them, so I can get the updated state from my other devices

you are viewing a single comment's thread
view the rest of the comments
[โ€“] vzq@lemmy.blahaj.zone 4 points 1 year ago* (last edited 1 year ago) (1 children)

IP white lists are, as you have found out, essentially dead. You should just do proper authorization.

Alternatively, look into a wire guard vpn or something like tailscale.

[โ€“] mathiuscov@programming.dev -1 points 1 year ago

wym look into a vpn? How would that work?