uncomplicated firewall
linux firewall
Uncomplicated firewall
- Install ufw from sbopkg
- Deny all incoming traffic
ufw default deny incoming comment 'deny all incoming traffic'
- Allow ssh incoming traffic
ufw limit in ssh comment 'allow SSH connections in'
- Allow outgoing traffic
ufw allow out 53 comment 'allow DNS calls out'
ufw allow out 123 comment 'allow NTP out'
ufw allow out http comment 'allow HTTP traffic out'
ufw allow out https comment 'allow HTTPS traffic out'
ufw allow out 68 comment 'allow the DHCP client to update'
- To deny any traffic on port 99, use the command below:
ufw deny 99
- Add new rule
ufw allow from 1.2.3.4 app WWW
- check added rule
ufw status verbose
- Delete rule
ufw delete 1
- start UFW
ufw enable
- status of UFW
ufw status verbose