uncomplicated firewall

Uncomplicated firewall

• Install ufw from sbopkg
• Deny all incoming traffic

	ufw default deny incoming comment 'deny all incoming traffic'

• Allow ssh incoming traffic

	ufw limit in ssh comment 'allow SSH connections in'

• Allow outgoing traffic

	ufw allow out 53 comment 'allow DNS calls out'
	ufw allow out 123 comment 'allow NTP out'
	ufw allow out http comment 'allow HTTP traffic out'
	ufw allow out https comment 'allow HTTPS traffic out'
	ufw allow out 68 comment 'allow the DHCP client to update'

• To deny any traffic on port 99, use the command below:

	ufw deny 99

• Add new rule

	ufw allow from 1.2.3.4 app WWW

• check added rule

	ufw status verbose

• Delete rule

	ufw delete 1

• start UFW

	ufw enable

• status of UFW

	ufw status verbose