Chapter 5
Controlling Network Communications
Section 2
Linux netfilter and SECMARK Support
The approach with TCP and UDP ports has a few downsides. One of them is that there is no knowledge of the target host, so you cannot govern where an application can connect to. Let’s see how we could tackle this situation with Linux netfilter and SECMARCK support. - Get introduced to netfilter - Assign labels to packets