Is there a firewall app which blocks all traffic like the personal firewalls for PCs do? With it you could
- whitelist certain apps for all destinations e.g. Google Earth, GMail, browser
- whitelist certain destinations in general e.g. *.google.com
- blacklist certain apps e.g. SuperGameButWhichAlsoPhonesHome.apk
- pops up if an app tries to connect to an yet unlisted destination and blocks or allows by default
The problem with permissions is, it's all or nothing. E.g. I want allow most apps to connect to Flurry or GoogleAnalytics to help the developers improve and understand the usage or if it uploads pics to facebook, but if an SMS app reads my SMS and also has the internet permission (probably for ads and analytics), who knows they're not also transferring my SMS?
Editing the hosts file is not an option as this would only be a blacklist and also very tedious to maintain.
Of course you need root access and it also needs to be open source for it to be trusted. I'm thinking of an addonn for CyanogenMod or so.
I'm not really all too familiar with firewall stuff, but found this for you: http://www.droidsecurity.com/droidhunter/index.html
Then maybe it's overkill but that one combined with this: http://www.carrotapp.com/2010/04/10/app-protector/
Might do the trick?
Thanks for your efford but I am looking for something completely different. A firewall is an app which controls internet traffic.
DroidWall would be perfect, but it doesn't function.
mcmurph said:
Thanks for your efford but I am looking for something completely different. A firewall is an app which controls internet traffic.
Click to expand...
Click to collapse
Yes, I search the same. DroidWall would be perfect, but it doesn't function.
totos1234 said:
Yes, I search the same. DroidWall would be perfect, but it doesn't function.
Click to expand...
Click to collapse
It works fine for me on a g1!
DroidWall does not prevent Wifi connections at all.
As such, as a firewall it's next to useless.
It's more a "3G data connection" limiter than a real firewall.
vasra said:
DroidWall does not prevent Wifi connections at all.
As such, as a firewall it's next to useless.
It's more a "3G data connection" limiter than a real firewall.
Click to expand...
Click to collapse
I don't understand your problem with DroidWall. I don't even have a data plan, so I only use it for Wifi. Sometimes I forget I have it installed, open a program that needs internet access, only to find that it won't work until I allow it to have the access through DroidWall. Works everytime.
Related
Are there any firewall type programs that can detect an applications access to the internet and allow or deny it? Like all the firewall programs for windows? comodo, zonealarm...
The only one firewall i've found is Airscanner's firewall, but it does not do that specifically, detect an app, and give options to disable that apps access to the net, while allowing other apps that you approve to continue access.
binarybin said:
Are there any firewall type programs that can detect an applications access to the internet and allow or deny it? Like all the firewall programs for windows? comodo, zonealarm...
The only one firewall i've found is Airscanner's firewall, but it does not do that specifically, detect an app, and give options to disable that apps access to the net, while allowing other apps that you approve to continue access.
Click to expand...
Click to collapse
i m looking for it too!!
search for "droid wall"!
Or HiSurfing.
Droid Wall works very good for me.Thank you!
I have a Touch Pro2 which connects to the net every 15 minutes for reasons that I'm not aware of (I have Outlook and Weather set to Manual, have disabled Latitude in Google Maps, etc). SPB Wireless Monitor tells me only that system.exe or services.exe are doing the accesses.
Since my provider charges per session this can get quite expensive, so I've been forced to turn 3G/GPRS access on/off manually using NoData.
Is there a way of selectively enabling net access for designated applications only? e.g. allowing it to Opera and Outlook only by default, and selectively enabling other apps on demand?
Alternatively, is there a way of finding out which apps are trying to access the net without my knowledge? (e.g. by forcing a prompt every time an application attempts 3G/GPRS access)?
TIA for any tips
Ian
itm said:
Alternatively, is there a way of finding out which apps are trying to access the net without my knowledge? (e.g. by forcing a prompt every time an application attempts 3G/GPRS access)?
Ian
Click to expand...
Click to collapse
Hi,
If you grab a trial of SPB Wireless Monitor,that will show what apps and how much data has been used per application.
i think this is a greate idea. someone should really develop this.
basically the user would provide the application with an approved list of applications that can connect using the 3g/edge connection. the rest can only connect using wifi or activesync
GLO said:
Hi,
If you grab a trial of SPB Wireless Monitor,that will show what apps and how much data has been used per application.
Click to expand...
Click to collapse
but it doesnt do anything after it tells you this stats.
a simple application similar to "no data" should still be developed. what do you all think?
look into your taskmanager
RSSHub ? QuickGPS ?
good look
Quote:
Originally Posted by itm View Post
Alternatively, is there a way of finding out which apps are trying to access the net without my knowledge? (e.g. by forcing a prompt every time an application attempts 3G/GPRS access)?
Ian
THE GRIZZ said:
but it doesnt do anything after it tells you this stats.
a simple application similar to "no data" should still be developed. what do you all think?
Click to expand...
Click to collapse
Sure, this wont stop the apps, but as the OP had asked, this will let him know what apps are accessing the NEt
GLO said:
Hi,
If you grab a trial of SPB Wireless Monitor,that will show what apps and how much data has been used per application.
Click to expand...
Click to collapse
SPB Wireless Monitor tells me only that system.exe or services.exe are doing the accesses.
Mamamam said:
look into your taskmanager
RSSHub ? QuickGPS ?
good look
Click to expand...
Click to collapse
I tried installing and runnign TaskMgr but it hangs during startup on my TouchPro2. What's the best alternative Task manager app?
itm said:
SPB Wireless Monitor tells me only that system.exe or services.exe are doing the accesses.
Click to expand...
Click to collapse
I suspect that they are your Network Operator settings checking for updates or
something like that.
GLO said:
I suspect that they are your Network Operator settings checking for updates or
something like that.
Click to expand...
Click to collapse
They make 87 connections in 18 hours - does that sound likely? It works out very expensive for those tariffs which charge a per-connection fee.
Any idea how I could disable this (or confirm that this is indeed the explanation)?
Hutchison3G sets up virtually all their supplied phones with network configurations to connect very frequently like what you describe.
See if you can simply disable your data connection. As with H3G in Australia, you dont get charged when it is simply accessing its own intranet, and when its roaming it only displays a 'lite' homepage.
Perhaps consider a non-network issued rom, or determine whether that data is 'free intranet' or not.
GLO said:
See if you can simply disable your data connection. As with H3G in Australia, you dont get charged when it is simply accessing its own intranet, and when its roaming it only displays a 'lite' homepage.
Click to expand...
Click to collapse
I already use NoData to manually enable/disable the data connection when it's required/not required. I was just hoping for a more elegant solution to stop unauthorised apps incurring data charges, while not sacrificing the convenience of automatic access for apps that I use alot (like Opera and Outlook)
hope someone develops this
You can try PPC version of ProxyCap to restrict or proxify access per application - http://www.proxycap.com/
It doesn't pop up when an aplication attempts to communicate with the Internet, so manual configuration is required. You'll need to set up proxy bypass for the applications you want to be allowed to connect and use localhost as a proxy by default, so that other applications can't communicate with external hosts. You can also filter traffic based on destination IPs and ports. E.g. an easier solution may be to allow http and https traffic only for all applications and drop everything else if you only need to use a web browser.
ProxyCap may not prevent your GPRS/EDGE/HSDPA connection from being established every time, but at least there will be application or protocol filtering in place and thus less unexpected traffic. ProxyCap does not seem to be able to filter ICMP traffic. It appears to be allowing DNS traffic through regardless of the filtering configuration too, as it can't be proxified and is required for proper name resolution.
Another alternative is PPC firewalls like
http://www.airscanner.com/products/firewall/
and
http://www.anthasoft.com/anthafirewall-firewall-for-mobile-device.php
I haven't used any of these products though and can't recommend them.
Both seem to be more user friendly than proxycap though.
Is there any app that can control which apps are allowed to use 3g/edge to connect to the Internet and which are only allowed to do that when wifi is available?
Yes me too want to know how to restrict data download.
Thank you.
IMO, an app that manages all permissions would be even better. I haven't heard of any such apps but hopefully someone can come up with something.
can I somehow restrict all data transfers? I have no data tarif from my mobile operator and allmost everywhere I am i have free wifi connection (so I want use wifi).
Thank you
"Tasker" may be able to help, it can control your settings based on all kinds of scenarios. I have my mobile data disabled and use Tasker to enable it when certain apps start (internet, email, etc), it will disable it automatically when you close that app (needs apndroid installed). I do the same with GPS.
Tasker gives you loads of options and control, you can create custom widgets and automatic profile switching.
milanf said:
can I somehow restrict all data transfers? I have no data tarif from my mobile operator and allmost everywhere I am i have free wifi connection (so I want use wifi).
Thank you
Click to expand...
Click to collapse
droidwall may be of interest to you guys, it blocks all apps to connect to 3g/edge unless you specify the app in the droidwall whitelist
note: Droidwall does require root
Would appreciate to know where to get the "Tasker" you mentioned.
Thank you.
I can find Tasker in the market, but I first found it on androlib. I use it to disable ´mobile data' during the night.
This is really strange. My apps can't connect to the internet when they're open, but when they're closed they have no problem. For example, my News, Email, and Finance apps show updated, current information, but when I open them they say that they can't connect. How do I fix this?
hotnvicious5 said:
This is really strange. My apps can't connect to the internet when they're open, but when they're closed they have no problem. For example, my News, Email, and Finance apps show updated, current information, but when I open them they say that they can't connect. How do I fix this?
Click to expand...
Click to collapse
if your internet status says limited, windows only reads that and then tells the app what do to.
if your connection is limited, thats why they arent connecting
Are you using a proxy server or VPN? There are known issues with Metro apps and VPNs
hotnvicious5 said:
This is really strange. My apps can't connect to the internet when they're open, but when they're closed they have no problem. For example, my News, Email, and Finance apps show updated, current information, but when I open them they say that they can't connect. How do I fix this?
Click to expand...
Click to collapse
I had this happen to my Toshiba early on, and I ended up doing a refresh.
GoodDayToDie said:
Are you using a proxy server or VPN? There are known issues with Metro apps and VPNs
Click to expand...
Click to collapse
stevedebi said:
I had this happen to my Toshiba early on, and I ended up doing a refresh.
Click to expand...
Click to collapse
I actually just tried connecting to a VPN and the connection worked! I've found that Windows 8 is somehow blocking Metro connections on private networks, but allowing them on public ones. I fixed the problem by setting my connection to Public.
Hi Guys, I have a D802 International version.
I think, there is a data sending when you connected to the Internet. It is from the Android System, I don't know what data and where it is send to.
I didn't noticed it before rooting and installed Droid Wall.
When I have my phone rooted, I blocked internet access on Android System. The first time connected to the Internet, my phone raised an error message said that there wasn't Internet access, but browsing, WA, Play Store,email,etc were okay,.
So I traced this error and found out that the error was from Android System.
Since there many packages on the Android System, I couldn't determine which one that sending the data.
On my Nexus 7, I also blocked Internet access on Android System and can connected to the internet without any problem.
Can you confirm that your phone have the same behavior? Is there any tools that can use to inspect which package that tried to sent data?
I'm using afwall+, see attachment for my para(noia) profile setup, everything needed works like that. International 802
android404 said:
I'm using afwall+, see attachment for my para(noia) profile setup, everything needed works like that. International 802
Click to expand...
Click to collapse
I am using Droidwall, settings are almost the same with yours, except that I didn't give access to root - Application running as root.
It is works fine with me.
What I am talking about is Android System, this one that trying to sent something to the net, the first time you connected to the net.
In your firewall, did you give access on Android System to the net?
If so, try to block it and see what's happen then.
htcm7 said:
I am using Droidwall, settings are almost the same with yours, except that I didn't give access to root - Application running as root.
It is works fine with me.
What I am talking about is Android System, this one that trying to sent something to the net, the first time you connected to the net.
In your firewall, did you give access on Android System to the net?
If so, try to block it and see what's happen then.
Click to expand...
Click to collapse
That's what i meant. As you can see on the screenshot i don't allow internet for the system and everything works fine. No message from system about lack of internet.
Also make sure you disable CarrierIQ from System, General, Backup and Reset, Collect Diagnostics and uncheck Allow Diagnostics.
Cheers!
Rayan said:
Also make sure you disable CarrierIQ from System, General, Backup and Reset, Collect Diagnostics and uncheck Allow Diagnostics.
Cheers!
Click to expand...
Click to collapse
When I go there the settings force close. I think i restricted that on day one with this phone but i would like to check. Don't find anything frozen in titanium or blocked in xprivacy or afwall that should cause this fc.
Also: install xposed framework and xprivacy to control which data you don't want apps that need internet to send home.
android404 said:
When I go there the settings force close. I think i restricted that on day one with this phone but i would like to check. Don't find anything frozen in titanium or blocked in xprivacy or afwall that should cause this fc.
Also: install xposed framework and xprivacy to control which data you don't want apps that need internet to send home.
Click to expand...
Click to collapse
I didn't have problems disabling it, I even froze the system app (rooted). Mine's T-Mobile branded.
Cheers!
android404 said:
That's what i meant. As you can see on the screenshot i don't allow internet for the system and everything works fine. No message from system about lack of internet.
Click to expand...
Click to collapse
That is not what i mean. If i give internet access to root, of course, it won't be any error.
I don't wan't every apps has root access to access the net without knowing by me.
Take a look at attachment. With that setting, i still can browsing, WA, check mail, etc.
I guess, something from LG's stuffs burried in Android System trying to connect to the net, and since it has no access, err msg raised.
Except that root apps can do whatever they want even if you block them... the root thing is an old habit from when i was on 4.3 on my previous phone, under which i had to allow all rooted apps to have access to the net in order to have access at all.
Anyways, i blocked rooted apps now, rebooted and still can access the net without any error messages. Why not install afwall+ and see if it works the way you expect it to work?
android404 said:
Except that root apps can do whatever they want even if you block them... the root thing is an old habit from when i was on 4.3 on my previous phone, under which i had to allow all rooted apps to have access to the net in order to have access at all.
Anyways, i blocked rooted apps now, rebooted and still can access the net without any error messages. Why not install afwall+ and see if it works the way you expect it to work?
Click to expand...
Click to collapse
Check your firewall log. On nexus 7, I didn't get err msg, but after looking the log, there are numbers of Internet access blocked.
I found it who is trying to sent/receive data from the net. It wasn't LG, it is Google.
On the log, here is one of the blocked ip address : 74.125.235.32.
See if your log recorded same address.
What the hell they are doing, spying on us the minute we connected to the net?
htcm7 said:
Check your firewall log. On nexus 7, I didn't get err msg, but after looking the log, there are numbers of Internet access blocked.
I found it who is trying to sent/receive data from the net. It wasn't LG, it is Google.
On the log, here is one of the blocked ip address : 74.125.235.32.
See if your log recorded same address.
What the hell they are doing, spying on us the minute we connected to the net?
Click to expand...
Click to collapse
They take your location whenever possible and also collect data for whatever they would like. How do you think they know how many people are running each version of android and things like that
Sent from my VS980 4G using xda app-developers app
htcm7 said:
Check your firewall log. On nexus 7, I didn't get err msg, but after looking the log, there are numbers of Internet access blocked.
I found it who is trying to sent/receive data from the net. It wasn't LG, it is Google.
On the log, here is one of the blocked ip address : 74.125.235.32.
See if your log recorded same address.
What the hell they are doing, spying on us the minute we connected to the net?
Click to expand...
Click to collapse
Of course they are, that's why we use firewalls, to at least try to make it a little bit harder for them.
Here's One part of what afwall blocked for me over the last. 20 minutes:
AppID : -1
Application's Name: Kernel
Total Packets Blocked: 91
93.184.220.20(1)
74.125.232.115(4)
74.125.232.100(2)
74.125.232.110(14)
54.246.159.107(2)
74.125.232.111(1)
54.230.44.185(3)
173.194.71.84(1)
149.126.74.114(11)
108.161.188.129(5)
173.194.71.95(6)
74.125.232.98(13)
108.161.188.154(7)
108.161.188.224(9)
166.70.171.101(1)
74.125.232.107(2)
173.194.71.108(9)
So, I guess, this is a standard proc when you use Android, you must let Google watching over you