[5.0+][ROOT][3.5.2] AFWall+ IPTables Firewall [16 May 2021]
- Thread starter ukanth
- Start date
Keeping in mind that different usage cases may yield different results, AFWall v3.5.3 beta from Play Store has been running fine for me on 2 devices: stock Moto Android 10 and stock Moto Android 11 (both rooted with Magisk).
I'm running DerpFest AOSP A12.1 with a custom Private DNS. Any problems or runs fine with this beta?
Sure but if anyone here already running beta 3.5.3 fine (or not) with this specs many other users didn't waste time with testing..mostly i test things by my self but sometimes i have no time/fun to do it.Run beta & report observed issues. That's what betas are for.
Also it seems i need to buy the unlocker for using the AFWall+ beta. Without i can't import my exported settings/rules from AFWall Donate! So it is not an option for me at the moment.
Last edited:
Well, the point of development threads such as this is to test rather than to ask for opinions about how it's working. Fair enough that you don't have time to test but it sounds like you know your way around well enough to review recent thread pages for issues. I could not speak for Android 12 but in 10 and 11 it seems good. Fortunately, in this thread there's not a lot of fluff so within five or so pages you can get a good idea. Then there is the GitHub page.
That's weird. I would have assumed that the beta did not require the unlocker. I have afwall+ beta and unlocker from Play Store installed but might be able to test without unlocker later or tomorrow.
Also, are you signed up for the afwall beta at Play Store and attempting to get it from there or manually installing it from another source?
Beta from Play Store without uninstalling the donation version. Maybe this is the culprit.
If Play Store sees you have the beta of the app and the Unlocker installed then that's the same as what I'm running which implies other factors, and one other difference is the Android version.
Odd..
im having a strange issue
i was having issues with an app accessing wifi because captive portal was blocked
so i disabled it in android 11
My firewall (afwall)recognizes the network attempt to connect but not as tutanota uid 10259 but as unknown uid -100 trying to connect to 81.3.6.164:443 among other addresses.
Tutanota logs in, it pings to let me know i have new mail, it tells me i have 2 new messages in the side bar, but it thinks it is offline (because i block the unknown app uid-100 from the Internet i assume) and it can't show me the messages.
It seems if i turn off captive portal the app will not connect (because it tries to connect an a unknown app uid -100 which is blocked)
If i turn ON captive portal (and wifi thinks there is no internet because of the fire wall) it WILL connect via the tutanota app uid (which is allowed by the firewall). Which seems completely backward
if i enable internet access to uid 1073 (netwrok manager,cell broadcast service, tethering, com.android.server.networkpermissionconfig) then every works it should.
this is not just a tutanota issue, fdroid classic acts the same, maybe some other apps
i dont have the issue on my pixel 6 android 12l
I don't have the issue on my pixel 6 with Android 12l
i do have this issue with lineageOS 19.1
i was having issues with an app accessing wifi because captive portal was blocked
so i disabled it in android 11
My firewall (afwall)recognizes the network attempt to connect but not as tutanota uid 10259 but as unknown uid -100 trying to connect to 81.3.6.164:443 among other addresses.
Tutanota logs in, it pings to let me know i have new mail, it tells me i have 2 new messages in the side bar, but it thinks it is offline (because i block the unknown app uid-100 from the Internet i assume) and it can't show me the messages.
It seems if i turn off captive portal the app will not connect (because it tries to connect an a unknown app uid -100 which is blocked)
If i turn ON captive portal (and wifi thinks there is no internet because of the fire wall) it WILL connect via the tutanota app uid (which is allowed by the firewall). Which seems completely backward
if i enable internet access to uid 1073 (netwrok manager,cell broadcast service, tethering, com.android.server.networkpermissionconfig) then every works it should.
this is not just a tutanota issue, fdroid classic acts the same, maybe some other apps
i dont have the issue on my pixel 6 android 12l
I don't have the issue on my pixel 6 with Android 12l
i do have this issue with lineageOS 19.1
Last edited:
Hello all,
Hope all are doing fine. I was out for past couple of months due to my surgery. I'm still recovering from it. Here is the latest BETA version to add support for Android 12+
I have not tested it on Android 13. I will try to do it this week.
Kindly raise the issue on github (existing or new one)
Hope all are doing fine. I was out for past couple of months due to my surgery. I'm still recovering from it. Here is the latest BETA version to add support for Android 12+
I have not tested it on Android 13. I will try to do it this week.
Kindly raise the issue on github (existing or new one)
Get well soon!Hello all,
Hope all are doing fine. I was out for past couple of months due to my surgery. I'm still recovering from it. Here is the latest BETA version to add support for Android 12+
I have not tested it on Android 13. I will try to do it this week.
Kindly raise the issue on github (existing or new one)
Did anyone find a fix for this yet? I am also getting requests from "apps running as root" for port 853 and privatedns wont work.
Android 12, Pixel 6 Pro
Search this thread for 853, you'll find many people who solved exactly this using a custom script
Oh good idea. This thread came up with this:
But I guess the following version seems better as it will be a bit more restrictive but enough for what I need?
Alright, so setting a "dns" in the rule didn't work. It has to be the IP. But that is fine.
In "Set Custom Script" I now have this:
I do not have any "shutdown custom script". I guess that is fine?
Also, is my rule the preferred method of setting a custom script or should I use it like this (or does it not matter at all):
In "Set Custom Script" I now have this:
I do not have any "shutdown custom script". I guess that is fine?
Also, is my rule the preferred method of setting a custom script or should I use it like this (or does it not matter at all):
No need for a shutdown script for your use case.
I think setting the $iptables var is only necessary when you save your script to a file and reference the file in the custom script field.
Not entirely sure though, and either way, as long as what you did works you should be fine.
Top Liked Posts
-
There are no posts matching your filters.
-
11Hello all,
Hope all are doing fine. I was out for past couple of months due to my surgery. I'm still recovering from it. Here is the latest BETA version to add support for Android 12+
I have not tested it on Android 13. I will try to do it this week.
Kindly raise the issue on github (existing or new one)3
Get well soon!Hello all,
Hope all are doing fine. I was out for past couple of months due to my surgery. I'm still recovering from it. Here is the latest BETA version to add support for Android 12+
I have not tested it on Android 13. I will try to do it this week.
Kindly raise the issue on github (existing or new one) -
390Welcome to official support page for AFWall+
Introduction
Features
Changelog - See third Post
AFWall+ BETA Program
Source Code/Wiki/FAQ
Translations
Thanks To/Credits
Cheers,
ukanth
XDA:DevDB Information
AFWall+ [ IPTables Firewall ], App for the Android General
Contributors
ukanth
Source Code: https://github.com/ukanth/afwall
Version Information
Status: Stable
Current Stable Version: 3.4.0
Stable Release Date: 2020-02-09
Current Beta Version: 3.5.0-BETA1
Beta Release Date: 2020-09-05
Created 2013-12-03
Last Updated 2020-09-0541Hello All,
After careful analysis and testing, I decided not to rewrite the way rules are being applied due to lot of under hood changes required. Instead added few enhancements. Now applying rules from menu will show how many rules are getting applied with progress status. Also when adding/removing few rules , it will apply only those related rules instead of full apply.
Also fixed couple of bugs and enhancements. You can get the full changelog from https://github.com/ukanth/afwall/blob/beta/Changelog.md
This is BETA Version which is not released on playstore. I have been using this for past week and it's stable. But there might be bugs which I haven't encountered. Please test it and report it in case of any issues.
Also I have been following XPrivacy thread on the decision by it's author. Just as FYI, I might fix it for my own usage when I update to nougat, I will share it here if anybody uses it here.
BETA Link - https://www.dropbox.com/s/isvi413qyx6vb4d/AFWall+ 2.9.7-BETA-TESTER.apk?dl=040Hello everyone,
I have released 3.0.0 stable on playstore today. It's been a crazy month so far. After going through lot of dilemma of whether to support the existing afwall or write a new one from scratch, finally able to pull myself and release stable version of afwall with lots of bug fixes and new features along with pie support. Since I don't do full time Android development, it was hard to keep track of what's going on with sdk level changes.
Thank you all for your support in AFWall+ development. Without your support it would simply not possible to pull through this.
I will be out for couple of days ( taking off to spend time with my family ) and hopefully will be able to reply to questions once back.
Thanks again and have a great day.35Hello everyone,
I have released stable version of 3.1.0 to playstore and github. Its live on playstore. You can find the changelog along with md5/sha here
https://github.com/ukanth/afwall/releases/tag/v3.1.0
Thank you all for your continuous support in AFWall+ development.
