graysky wrote:> I understand that. To my knowledge, iptables blocks on a hosts or ports basis, but not on a program basis. For example, how would one block all outgoing traffic from any program under ~/.wineYou need something like AppArmor or SELinux. How to use them is not a Wine question; ask on your distro support forum.
graysky wrote:> iptables blocks on a hosts or ports basis, but not on a program basis.And by user / group id. Then run wine under separate user account when you need to run win app with restricted network access. In either case that's OT. Wine is not sand box and can't do what you want.