Update README.md

2026-03-13 09:55:40 +00:00
parent 57b59f5b71
commit 197d380588
1 changed files with 16 additions and 0 deletions
--- a/README.md
+++ b/README.md
@@ -3,6 +3,22 @@
 ## Description
 Simple minimalistic methodology to prevent specified Linux programs having access to the public Internet via iptables

+## Workflow
+
+```
+System applies no-internet iptables rule at boot
+        ↓
+User executes program
+        ↓
+Program is launched via sg with the group "no-internet"
+        ↓
+Newly created process inherits no-internet GID
+        ↓
+iptables matches packets from processes with the no-internet GID
+        ↓
+Outbound packets belonging to the program dropped
+```
+
 ## Getting Started

 ### Dependencies