Firewall rules definitions
Each rule is made of two elements: an object and an action.
An action can be ‘pass’ or ‘block’.
An object can be an app, a directory, an IP address, a CIDR network address, a TCP/UDP port or a TCP/UDP port range.
There are three types of rules in Vallum, defined in three different places. These should be considered as three different layers of rules, each one having its own priority:
- Global Rules
Global Rules affect all your Macs connections. All processes and apps connections are always checked against these rules.
- Managed Apps Rules
Managed Apps Rules are applied to apps. Each app has its own set of rules.
- Managed Folders Rules
Managed Folders Rules are applied to directories. Each directory has its own set of rules.
Every time a process or an app in your Mac initiates a TCP/UDP outbound connection Vallum looks for matches inside its set of rules. Each connection can match one or more rules in Global Rules, Managed Apps Rules and Managed Folders Rules.