ufw - Ucomplicated Firewall
I’m starting to play around with ufw (Ucomplicated Firewall), a firewall for Linux.
It’s command line based, but simple enough.
I’ll update this post as I play along.
Enable/disable ufw
1sudo ufw enable
2sudo ufw disable
Default policy
- mostly open ports
1sudo ufw default allow
- mostly closed ports
1sudo ufw default deny
Allow/deny services syntax
1sudo ufw allow|deny <service>
Add rules syntax
1sudo ufw allow|deny [proto <protocol>] [from <address> [port <port>]] [to <address> [port <port>]]
Delete rules syntax
1sudo ufw delete <rule type> from <ip address> to any port <port number>
Firewall status
1sudo ufw status
1Firewall loaded
2To Action From
3-- ------ ----
424800:tcp ALLOW 100.000.1.1
Examples
1sudo ufw allow proto tcp from 100.000.1.1 to any port 24800
2sudo ufw delete allow proto tcp from 100.000.1.1 to any port 24800
3sudo ufw allow ssh
4sudo ufw delete allow ssh