Post

Replies

Boosts

Views

Activity

System Extension for Enterprise
while activating and starting the network extension the user sees prompts which he/she has to act on . but in an enterprise environment the activation process need not have the user who would click on these prompts . so how is such scenario handled in activating system extension in enterprises . do we have any control on prompts , may be by authenticating through a silent process which might be controlled by administrator remotely during the deployment ??
1
0
499
Sep ’20
Name of Allow/Deny prompt for Network extension
when I install the Network extension I see 2 prompts : 1 is the prompt in Security And Privacy where the system ext is blocked and have to allow it after giving password 2nd is when I save the preferences (network ext) I see the Allow/Deny prompt . for 1st prompt it seems it displays the name of the product name of the container app . where is the name & icon taken for the 2nd allow / deny prompt ? how to modify it ?
1
0
469
Aug ’20
Capture all traffic to the specified remote IP
I have to capture all traffic for only a particualar remote IP (e.g. 30.40.50.60) . i have tried to set NEFilterRule for NEFilterDataProvider as follow : host= [NWHostEndpoint endpointWithHostname:@"30.40.50.60" port:@"0"] Rule= [[NENetworkRule alloc] initWithDestinationNetwork:host prefix:0 protocol:NENetworkRuleProtocolAny]; FilterRule = [[NEFilterRule alloc] initWithNetworkRule:Rule action:NEFilterActionFilterData]; FilterRuleArray = [NSArray arrayWithObjects:FilterRule, nil]; FilterSettings = [[NEFilterSettings alloc] initWithRules:FilterRuleArray defaultAction:NEFilterActionAllow]; [self applySettings:FilterSettings completionHandler:^(NSError *error){}]; somehow I am still getting all the traffic in handleNewFlow . i wan it only for the particular IP address . not sure what is wrong here . any pointer on this will help .
2
0
522
Aug ’20
Code signature validation failed fatally
seeing this error when I am trying to install my network extension: _macvnodechecksignature: /Applications/abc.app/Contents/MacOS/abc: code signature validation failed fatally: When validating /Applications/abc.app/Contents/MacOS/abc:   Code has restricted entitlements, but the validation of its code signature failed. Unsatisfied Entitlements:__ I have set the right entitlements as far as I know . is this error about entitlements or signature that is not obvious from the message . this is sseen on Catalina 10.15.6 the macOS Network extension is Developer ID signed . still facing this error . any idea what will fix this error ??
11
1
7.0k
Aug ’20
NWHostEndpoint to filter all the traffic
struggling to set NEFilterRule for NEFilterDataProvider in order to filter (or for that matter allow) all the traffic. have tried following : [NWHostEndpoint endpointWithHostname:@"0.0.0.0" port:@"0"] [NWHostEndpoint endpointWithHostname:@"" port:@"0"] [NWHostEndpoint endpointWithHostname:@"0.0.0.0/0, " port:@"0"] [NWHostEndpoint endpointWithHostname:@"0.0.0.0/0, ::/0" port:@"0"] nothing of the above works . how to construct the NWHostEndpoint in order to handle all the traffic . thank you .
2
0
814
Jul ’20