• After 15+ years, we've made a big change: Android Forums is now Early Bird Club. Learn more here.

[APP][2.2+] Network Connections for Android

Do you find it useful ?

  • Total voters
    9
  • Poll closed .
EarlyMon said:
Android Firewall

https://play.google.com/store/apps/details?id=com.jtschohl.androidfirewall

I started out with DroidWall in 2010 and despite others, always end up there (this is an offshoot).

I can never remember where it is in Android Tuner and it got broken in Rom Toolbox.

I may have the function lurking in other apps for all I know (I have a lot of tool type apps) but it's just a personal preference. That one I can find, trust and know what it's doing. Plus - pretty good features.
Click to expand...

Both are using IPtables with the netfilter kernel module. Android Firewall seems like a port of DroidWall.

But my idea is different - block per IP address and/or IP address + port (like you see it in connections tab). It will use again IPTables module, but per IP block is more powerful (you know why). The first problem is that many devs will hate me for this - app crashes for unhandled connections, ad stops, etc.

The second problem is that I may end up kicked from Google Play (like some adBlock apps :) - Should look at Google Play's Terms first :)
 
Android Firewall - "This is a fork of the popular application Droidwall that uses iptables to limit data usage and add security to Android. Droidwall was originally created by developer Rodrigo Zechin Rosauro and was discontinued."

Yeah, I had a hunch that you were thinking about direct IP blocking.

Do toxic apps rely on IPs often?

Some appear to rely on DNS - when in doubt, I've simply added to my ad blocker by hand.

My most used apps are web browsers.

I rely on ad blocking because the updated lists really seem to do a good job at hampering toxic sites, not just ads.

But my Google search ad links are dead, so Google hates it regardless.

So, back to the idea of direct IP blocking...

I accumulate a lot of cruft moving apps in and out.

From a support standpoint, would I be able to look at the blocked IP list and see which app made me add it, or similar logs, or would the assumption be that once toxic, always toxic?
 
EarlyMon said:
Android Firewall - "This is a fork of the popular application Droidwall that uses iptables to limit data usage and add security to Android. Droidwall was originally created by developer Rodrigo Zechin Rosauro and was discontinued."

Yeah, I had a hunch that you were thinking about direct IP blocking.

Do toxic apps rely on IPs often?

Some appear to rely on DNS - when in doubt, I've simply added to my ad blocker by hand.

My most used apps are web browsers.

I rely on ad blocking because the updated lists really seem to do a good job at hampering toxic sites, not just ads.

But my Google search ad links are dead, so Google hates it regardless.

So, back to the idea of direct IP blocking...

I accumulate a lot of cruft moving apps in and out.

From a support standpoint, would I be able to look at the blocked IP list and see which app made me add it, or similar logs, or would the assumption be that once toxic, always toxic?
Click to expand...

About toxic apps - they don't rely on IPs, because it's easier to change the DNS record than embedded IP in the app. But IP blocks goes well into the semantics of the app :) I've seen some spyware apps that are using embedded IPs: 1) because it's faster (because of the DNS resolving time) and 2) they are not dealing with domain names (which is easier to spoof on clients side - btw most ad blockers works like DNS posioning (e.g. /system/etc/hosts alter and if one uses direct IP address the spoofing of IP will not work).

So in general, if I was a not big ad company I'll make it with IPs (because of the hosts file poisining).


About the UI - the best will be to see the blocked IPs and app names (reason for block) in a separate tab withing Network Connections app. But my problem is Google :) They will surely hate my app (any many other big fishes), so I'll have to probably release such feature as a separate app that will go like extension to Network Connections App (and most probably out of Google Play).

About the toxic IPs - I suppose that the users will use it to block not only toxic IPs, but Flurry, Analytics, Ads, and everything that ruins the batteries :)
 
You know what? Today I asked myself - why there are no apps that are blocking IP addresses but apps. Droidwall, Android Firewall, MIUI's internal firewall ... they all block whole apps (per UID), no IPs .... I suppose there's a good reason :) I'll have to digg in this further :)
 
Boy. Ok this is going back a few years.

Once upon a time I simply maintained my extras by hand and just edited the rules myself.

Then I got lazy and stopped that. :D

I see that Android Firewall does allow rules importing.

If you emit a rules package for export, how would you be in violation?

Have to check if the AFWall import is an append or replacement.

Just thinking out loud lol.

PS - uid blocking seems easier for their target market - see app, block app.

I know my export idea is screwy - but it would save you from unrooted Bozos complaining and one-starring you because they couldn't block something. :p

Or just edit existing rules - if Google doesn't kick.

Edit - removed inane opening phrase - that was strictly a SwiftKey operator error. :o
 
Exporting rules is good idea, but the export file is a a hashmap with package names (so I cannot put IPs there).

My idea is simple - in the Setting tab there's a menu line - "Enable Connection Blocker" - which checks for root, checks for iptables - and if both are present unlocks the feature. Then a separate sqlite table stores blocked IPs and package names (reason for block) and one piece of code applies that in iptables :) The blocked IPs can be added from the IP Details screen (for those that have enabled connection blocker).

From UI point of view however there should be also a separate "tab" that shows list of blocked IPs with package names (reason for block) where you can remove IPs from blocking and apply all rules (in case of restart).
 
pandata000 said:
Yeah, I had some requests to China too ... from ESFileExplorer (estrongs) most probably to their server. However they don't have banners or something that needs that connection (unless for own tracking).
Click to expand...

ES File Explorer does come from China, and is pre-installed on many Chinese devices. Something interesting and possibly sinister here. Google Play is showing it as "This app is incompatible with your device." and won't install, however when I use a VPN into the USA, it is compatible and does install and run OK this is on a Samsung Galaxy Win GT-i8552 phone.

Any comments?
Maybe Google is geo-restricting this kind of app from the PRC to keep the govt. happy? ....hmmm.."Do no evil!"

I'm going to keep an eye on this and what happens. Some free apps from China are quite popular, well polished and are generally well regarded, things like Boat and Dolphin browsers, Kingsoft Office, as well as the GO suite of apps, WeChat of course.

EDIT:

I've been using the MiHome launcher which comes from China. While it's very nice, it seems to be extremely busy talking to servers on China Unicom in Shanghai, on four different IPs.
 
EarlyMon said:
First thing that bothers me is Camera360 is talking to its servers right now and so far as I knew, it wasn't running (but I ought to pay more attention to background behavior of new apps).

Camera360 does have legitimate reasons for its own cloud access - but I haven't subscribed to that and I'm not downloading scenes. Otherwise, I don't see why it needs to be talking to China right now.

Until I sniff the traffic (Check out "WiFinspect [Root]" https://play.google.com/store/apps/details?id=uk.co.opticiancms.wifiprobe it's pretty good for a start) I think I'll just add that to the firewall and break some features.
Click to expand...

Camera360 does come from China...as do so many of those nice apps we all use. Made by a PinGuo Inc. of Chengdu. BTW "pinguo" actually means apple...yeh Apple Inc. but not thee Apple Inc. of Cupertino. :rolleyes:
 
mikedt said:
ES File Explorer does come from China, and is pre-installed on many Chinese devices. Something interesting and possibly sinister here. Google Play is showing it as "This app is incompatible with your device." and won't install, however when I use a VPN into the USA, it is compatible and does install and run OK this is on a Samsung Galaxy Win GT-i8552 phone.

Any comments?
Maybe Google is geo-restricting this kind of app from the PRC to keep the govt. happy? ....hmmm.."Do no evil!"

I'm going to keep an eye on this and what happens. Some free apps from China are quite popular, well polished and are generally well regarded, things like Boat and Dolphin browsers, Kingsoft Office, as well as the GO suite of apps, WeChat of course.

EDIT:

I've been using the MiHome launcher which comes from China. While it's very nice, it seems to be extremely busy talking to servers on China Unicom in Shanghai, on four different IPs.
Click to expand...

Yes, there are other reports for apps talking to China - some of MIUI users which is reasonable.

About EStrongs - yeah there are some polished China apps with no ads and no premium/paid versions, which look strange at first sight, but probably they have something else in mind :rolleyes:
 
Been using this for a few days now, I noticed Boat Browser is very busy phoning home. Would love to know what it's sending though, but I do know the B of Boat stands for Beijing. I usually use Chrome, but have been trying Boat instead. But then Chrome is busy phoning Mountain View.
 
pandata000 said:
Yes, there are other reports for apps talking to China - some of MIUI users which is reasonable.

About EStrongs - yeah there are some polished China apps with no ads and no premium/paid versions, which look strange at first sight, but probably they have something else in mind :rolleyes:
Click to expand...

The government does have full access and back doors to everything that's stored on-line here, that's the law. Same applies to software as well, like Skype and Windows in China. To run a website in China, have to have a government issued ICP license, and show the license number on every webpage. ICP license - Wikipedia, the free encyclopedia

But then apparently the NSA has access to everything as well. India produces a lot of free apps as well, but that seems to be mainly ad-supported stuff.
 
mikedt said:
Been using this for a few days now, I noticed Boat Browser is very busy phoning home. Would love to know what it's sending though, but I do know the B of Boat stands for Beijing. I usually use Chrome, but have been trying Boat instead. But then Chrome is busy phoning Mountain View.
Click to expand...


Huh, "com.swing.dodoro.derek.pang" - this is the only package that makes connections when I put the Boat Browser, and they are not to China ... However, uninstalling it.
 
jimmywalt said:
So am I too late to the game to possibly get the key????

Thank you very much!
Click to expand...

Yes, the promo was until 19 Oct, but I'm developing a new "IP Blocker for root" plugin for the same app and will most probably put the unlock key for Network Connections live again for a limited period of time, for all of you that want to test and use the new plugin. So, stay tuned.
 
pandata000 said:
Yes, the promo was until 19 Oct, but I'm developing a new "IP Blocker for root" plugin for the same app and will most probably put the unlock key for Network Connections live again for a limited period of time, for all of you that want to test and use the new plugin. So, stay tuned.
Click to expand...

Sounds great!!!! Thank you!!! Please make sure to post in this thread when you do it again.

Thanks again!
 
Great app, thanks :)

Does capture on my phone since a few days.
My most interest is EStrongs (ES File Explorer) ... but it didn't show up in the log yet ... I'd be happy if this state remains with my favorite file manager :)
 
I used Network Connections to show Google their Chrome Browser was pulling multiple connections needlessly. Like a LOT of connections causing battery drain like no other. They magically deleted my comment from Google Play and snuck out an update shortly after. Not kidding. :eek:

I've used this app to lose several offending apps. So far nothing I believe to be malicious but certainly not worthy of having on my phone.

Just updating to let you know the app is still rockin. :beer:
 
You must log in or register to reply here.
Back
Top Bottom