This tool adds rules to the macOS pf firewall. The pf firewall has no UI other than pfctl so it works well for fleet-wide low-level security purposes.
Rules are embedded in the file Sources/llfw/Ruleset.swift
engage- ifllfwisn't disabled, will create or overwrite the rule file and load it intopf. It will also retainpfand store the token value at/Library/Application Support/llfw/pfReferenceTokendisablewill unload these rules, release our claim onpfif we had one, and create a touchfile that deactivates futureenagagecommands. The touchfile is/Library/Application Support/llfw/doNotLoadLLFWRulesenableremoves the touchfile/Library/Application Support/llfw/doNotLoadLLFWRules