Meds — “net healing” NFQUEUE firewall written in Go
113 views
Skip to first unread message
Nikita Loskutov
Oct 11, 2025, 5:52:28 AM (5 days ago) Oct 11
to golang-nuts
Hello there!
I made firewall for Linux PC/VPS using Golang and NFQUEUE.
Meds: net healing
https://github.com/cnaize/meds
Maybe someone will find it useful or interesting.
Anyway feedback is welcome
Jason E. Aten
Oct 11, 2025, 12:16:58 PM (4 days ago) Oct 11
to golang-nuts
meds is pretty interesting looking.
I like especially the per IP rate limiting feature. Is it possible to
white list some "known good" IPs (that are probably a
part of the local system) to opt out of the rate limiting? I'm
concerned about impacting my own systems, for instance.
Would it be possible to rate limit or block based on
geo-location and not just single IP?
Nikita Loskutov
Oct 11, 2025, 2:01:39 PM (4 days ago) Oct 11
to golang-nuts
Thank you for your feedback!
1. Yes, you can use integrated API to add IPs/Subnets to whitelist. In that case no rate limits will be applied.
Here is an example how to add 200.168.0.0/16 to the whitelist (more in README.md or api.go files):
curl -u admin:mypass -X POST http://localhost:8000/v1/whitelist/subnets -d '{"subnets": ["200.168.0.0/16"]}'
2. Geo location blocks not implemented yet, but it's not a big deal to do so if the project became popular.
1. Yes, you can use integrated API to add IPs/Subnets to whitelist. In that case no rate limits will be applied.
Here is an example how to add 200.168.0.0/16 to the whitelist (more in README.md or api.go files):
curl -u admin:mypass -X POST http://localhost:8000/v1/whitelist/subnets -d '{"subnets": ["200.168.0.0/16"]}'
2. Geo location blocks not implemented yet, but it's not a big deal to do so if the project became popular.
Reply all
Reply to author
Forward
0 new messages