Rules for localhost

[abidal3]

Maybe you should add column for localhost (127.0.0.1) rules especially for apps running as root.

[ukanth]

You mean device localhost? Why ?

[abidal3]

Yes.
As example for redirection:
su -c iptables -t nat -A OUTPUT -p udp --dport 53 -j DNAT --to-destination 127.0.0.1:5400
Now for this need to allow Wi-Fi rule for all Apps running as root.

[0xRustlang]

This will be great.
Because LAN column won't block access of app to 127.0.0.1 and 0.0.0.0 (i don't know why this IP also behave like localhost in almost every android device i tested.)

This will be also a great protection against IPCs to bypass firewall rules by some clever annoying apps that have root access (although i know this won't protect against very clever ones that have malicious behaviors and is somehow a false sense of protection against advanced apps that hace malicious behaviors but it is still a very good option to have)

specially a great protection also against websites that scan localhost like what ebay did in the past.

Thank you very much

[0xRustlang]

Also there is this issue regarding this matter.

#987

This will be a great feature.

Thanks