Post

Replies

Boosts

Views

Activity

NWHostEndpoint to filter all the traffic
struggling to set NEFilterRule for NEFilterDataProvider in order to filter (or for that matter allow) all the traffic. have tried following : [NWHostEndpoint endpointWithHostname:@"0.0.0.0" port:@"0"] [NWHostEndpoint endpointWithHostname:@"" port:@"0"] [NWHostEndpoint endpointWithHostname:@"0.0.0.0/0, " port:@"0"] [NWHostEndpoint endpointWithHostname:@"0.0.0.0/0, ::/0" port:@"0"] nothing of the above works . how to construct the NWHostEndpoint in order to handle all the traffic . thank you .
2
0
814
Jul ’20
Code signature validation failed fatally
seeing this error when I am trying to install my network extension: _macvnodechecksignature: /Applications/abc.app/Contents/MacOS/abc: code signature validation failed fatally: When validating /Applications/abc.app/Contents/MacOS/abc:   Code has restricted entitlements, but the validation of its code signature failed. Unsatisfied Entitlements:__ I have set the right entitlements as far as I know . is this error about entitlements or signature that is not obvious from the message . this is sseen on Catalina 10.15.6 the macOS Network extension is Developer ID signed . still facing this error . any idea what will fix this error ??
11
1
7.0k
Aug ’20
Capture all traffic to the specified remote IP
I have to capture all traffic for only a particualar remote IP (e.g. 30.40.50.60) . i have tried to set NEFilterRule for NEFilterDataProvider as follow : host= [NWHostEndpoint endpointWithHostname:@"30.40.50.60" port:@"0"] Rule= [[NENetworkRule alloc] initWithDestinationNetwork:host prefix:0 protocol:NENetworkRuleProtocolAny]; FilterRule = [[NEFilterRule alloc] initWithNetworkRule:Rule action:NEFilterActionFilterData]; FilterRuleArray = [NSArray arrayWithObjects:FilterRule, nil]; FilterSettings = [[NEFilterSettings alloc] initWithRules:FilterRuleArray defaultAction:NEFilterActionAllow]; [self applySettings:FilterSettings completionHandler:^(NSError *error){}]; somehow I am still getting all the traffic in handleNewFlow . i wan it only for the particular IP address . not sure what is wrong here . any pointer on this will help .
2
0
523
Aug ’20
Name of Allow/Deny prompt for Network extension
when I install the Network extension I see 2 prompts : 1 is the prompt in Security And Privacy where the system ext is blocked and have to allow it after giving password 2nd is when I save the preferences (network ext) I see the Allow/Deny prompt . for 1st prompt it seems it displays the name of the product name of the container app . where is the name & icon taken for the 2nd allow / deny prompt ? how to modify it ?
1
0
469
Aug ’20