netbirdio
Add option to disable alternative connections when netbird is not connected
The goal is to force a client to only connect to the internet via netbird and a configured exit node. It would be nice to have a similar option to the killswitch many commercial VPN clients are offering. This should primarily be used to block access to the internet. LAN connections, if enabled in the configuration, should remain unaffected.
I haven't figured out a way to reliably configure firewall rules and routing tables. That is for a variety of reasons.
- netbird runs on different system. Reproducing the rules on different systems (Windows, Linux, iptables, nftables, firewalld, etc.) is cumbersom.
- netbird itself has certain requirements, which connections and services are required
- netbird runs on systems, where the user might not even have the neccessary access to set up a "manual killswitch"
These are all arguments why such a functionality should be baked into the client.
If that is not possible, I'd recomment extending the documentation to give users some helpful advice how to configure a killswitch themselves.
📝 CodeRabbit Plan Mode
Generate an implementation plan and prompts that you can use with your favorite coding agent.
- [ ] Create Plan
🔗 Similar Issues
Related Issues
- https://github.com/netbirdio/netbird/issues/3838
- https://github.com/netbirdio/netbird/issues/4823
- https://github.com/netbirdio/netbird/issues/3809
- https://github.com/netbirdio/netbird/issues/4856
- https://github.com/netbirdio/netbird/issues/4879
👤 Suggested Assignees
🧪 Issue enrichment is currently in open beta.
You can configure auto-planning by selecting labels in the issue_enrichment configuration.
To disable automatic issue enrichment, add the following to your .coderabbit.yaml:
issue_enrichment:
auto_enrich:
enabled: false
💬 Have feedback or questions? Drop into our discord!
![coderabbitai[bot] avatar](https://avatars.githubusercontent.com/in/347564?v=4 "Published by a pub.dev verified publisher"){kind=small}