1. Home
2. Questions
3. Unanswered
4. AI Assist Labs
5. Tags
7. Chat
8. Users
10. Companies
Teams

Ask questions, find answers and collaborate at work with Stack Overflow for Teams.
Try Teams for free Explore Teams
Teams
Ask questions, find answers and collaborate at work with Stack Overflow for Teams. Explore Teams

How to disable all networking for a running process in Linux? [duplicate]

Ask Question

Asked 1 year, 9 months ago

Modified 1 year, 9 months ago

Viewed 329 times

0

What is the least convoluted way to do it? To start a process with no networking, unshare -n -r does the job reliably.

asked Jan 22, 2024 at 18:38

Cigarette Smoking Man

2652 silver badges11 bronze badges

1

I'm not sure there's a good way to do this. You can't move a process into another network namespace, so you can't accomplish the exact equivalent of your unshare command. Standard iptables or nftables does not have the ability to block traffic by pid. This answer suggests moving the process into a cgroup and then blocking network access for that cgroup.

larsks
– larsks

2024-01-22 23:23:51 +00:00
Commented Jan 22, 2024 at 23:23
3

Does this answer your question? how to unshare network for current process

A.B
– A.B

2024-01-22 23:51:13 +00:00
Commented Jan 22, 2024 at 23:51
Can't say it's least convoluted, but it's the nearest goal, since it does as what is asked.

A.B
– A.B

2024-01-22 23:53:15 +00:00
Commented Jan 22, 2024 at 23:53
@A.B Thank you for the link! I will attempt that method and report back. :)

Cigarette Smoking Man
– Cigarette Smoking Man

2024-01-23 11:39:43 +00:00
Commented Jan 23, 2024 at 11:39
4

Does this answer your question? Block network access of a process?

MC68020
– MC68020

2024-01-23 14:55:25 +00:00
Commented Jan 23, 2024 at 14:55

| Show 2 more comments

0

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.