1 Introduction
In the 10.0 system rom customization development, in the product requirements of the netd network in the system, it will be required to set the function of shielding an app from accessing the Internet. The iptables command
in liunx is also more important, and then I will come to IOemNetd. Realize the relevant functions of the app Internet blacklist, that is,
only one app is not allowed to access the Internet in the system, that is, except this app, other apps can access the Internet, and finally realize the interface call in the framework custom service
2. iptables uses IOemNetd to realize the core class of app Internet blacklist function
system\netd\server\binder\com\android\internal\net\IOemNetd.aidl
system\netd\server\OemNetdListener.cpp
system\netd\server\OemNetdListener.h
3. Core function analysis and implementation of iptables using IOemNetd to realize app Internet blacklist function
In the android native system, iptables is very important in the network filtering packet module. Iptabels is a packet filtering firewall system integrated with the Linux kernel. Both linux and android include the function of Iptables.
Iptables facilitate better control of IP packet filtering and firewall configuration on a Linux system if the Linux system is connected to the Internet or a LAN, a server, or a proxy server that connects the LAN to the Internet.
Another important advantage of netfilter/iptables is that it gives the user complete control over firewall configuration and packet filtering. You can customize your own rules to meet your specific needs
The commonly used commands of iptables are as follows:
Command Description
-L --list <chain name> View iptables rule list
-A