Skip to content

atomic77/nethadone

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits
cmd
cmd
 
 
config
config
 
 
database
database
 
 
doc
doc
 
 
ebpf
ebpf
 
 
handlers
handlers
 
 
models
models
 
 
policy
policy
 
 
scripts
scripts
 
 
static
static
 
 
views
views
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

Nethadone

Nethadone is an adaptive L4 router built to discourage and train users on a network out of compulsive or addictive web usage.

It uses eBPF to efficiently monitor and dynamically adjust traffic speeds to gently nudge users off of configured sites. The goal is to get the benefit of these platforms (occasional surfing, ability to respond to messages, etc.) while avoiding the downsides of excessive use.

Getting Started

Nethadone is in active development and only been tested on an Orange Pi R1 Plus. If you are interested in giving it a try on a similar device, please check out doc/install.md for details, feedback and contributions are more than welcome!

For development or testing on a local VM, please see doc/development.md

How does it work?

Nethadone leverages several eBPF programs to monitor and classify routed traffic as it passes through. Based on the configured policies, packets are slotted into a series of bandwidth classes. The default configuration corresponds roughly to:

  • Full throttle (no restriction)
  • Decent DSL connection
  • Good 4G connection
  • Flaky 3G connection
  • A top of the line US Robotics 56K modem

As a user continues to compulsively use a given site, traffic to flagged IPs gradually works its way down the list above.

Nethadone currently only supports a single policy, for more details see policy/README.md.

For more details on bandwidth classes (i.e. qdisc configuration), see doc/qdisc.md

Traffic flow

The following diagram shows the approximate life of a packet as it flows through the nethadone router, and most of the moving parts involved:

overview

Design Goals

  • Protect all devices in a network with zero client-side configuration or software
  • Dynamically throttle traffic from clients to configurable sites or groups of sites to "train" good habits [1]
  • Use only IP and (sniffed) DNS (i.e. as close to a pure L4 solution as possible)
  • Introduce no latency on "good" traffic
  • Usable on minimal hardware like an Orange Pi R1plus or similar

References & Acknowlegements

Projects

A number of projects were invaluable reference points in trying to understand the intracies of eBPF:

While a very different technical solution, the product experience of Pi-hole from the users' persective is a huge inspiration for nethadone.

Papers and Books

Learning eBPF - Full Book

Replacing HTB with EDT and BPF

Scaling Linux Traffic Shaping with BPF

Understanding tc “direct action” mode for BPF

Linux Advanced Routing & Traffic Control HOWTO

About

No description or website provided.

Topics

networking ebpf armbian

Resources

Readme

License

GPL-3.0 license
Activity

Stars

6 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages