I was googleing around, and found something. There is a string matching possibility in iptables. So I connected to my phone over ADB, and listed policy's with
. Found out, that there is an 'afwall-wifi-wan' chain with a bunch of 'owner UID match <number>' . So I added:
This should made the UID 1000, specifically the System UI, to connect to the google server to get the HTTP Response 204 (I tried to make sure, that the connection would go through). The iptables added just fine, I could list it, but unfortunately, it didn't work. And I don't know why. I have no experience in Android development. If somebody more experienced stop by, could please shred some light on this?
And yes , I was surprised that I found out, that there is a tcpdump on (at least my) phone.
Somebody maybe some idea?
Code:
iptables -L -n --line-numbers
Code:
iptables -I afwall-wifi-wan 44 -m owner --uid-owner 1000 -m string --string "generate_204" --algo bm -j RETURN
iptables -I afwall-wifi-wan 45 -m owner --uid-owner 1000 -m string --string "generate204" --algo bm -j RETURN
iptables -I afwall-wifi-wan 46 -m owner --uid-owner 1000 -m string --string "clients3.google.com" --algo bm -j RETURN
And yes , I was surprised that I found out, that there is a tcpdump on (at least my) phone.
Somebody maybe some idea?