Ubuntu Firewall – ufw at kozaru

14

May

08

Ubuntu Firewall – ufw

post info

By Michael

Categories: Computers and Software

ufw is a nifty little command that interfaces with the firewalling features built into the ubuntu kernel, and more specifically the iptables rules.

I remember working with iptables rules from a while back, and making line after line of script to activate and deactivate ports, addresses and such.

ufw makes that so much simpler. These commands are all run from a terminal. There’s no need for a gui, it’s easy enough as it is.

sudo ufw status displays the firewall’s current status, and the currently applied rules.
sudo ufw enable turns on the firewall
sudo ufw disbale turns off the firewall
sudo ufw default allow opens up everything – allow all connections by default
sudo ufw default deny closes down everything. Your computer is a black hole on the network. Nothing comes in unless you asked for it, or specifically allow it.
sudo ufw allow port opens up a specific port, like 80, for a webserver
sudo ufw deny port don’t want to host a webpage anymore? Deny that sucka.
sudo ufw deny from ipaddress block all access from a particular IP address.

So, if I do the following on my computer:

sudo ufw enable sudo ufw default deny sudo ufw allow 80

I’m switching on the firewall and blocking everything but port 80 for a webserver. The status command gives me:

michael@sparta:~$ sudo ufw status Firewall loaded
To Action From -- ------ ---- 80:tcp ALLOW Anywhere 80:udp ALLOW Anywhere

Effectively invisible, except for the webserver.

Keep checking back for more reference guides.

0 Responses to “Ubuntu Firewall – ufw”

Feed for this Entry Trackback Address View blog reactions

No Comments

Leave a Reply

Search

Stuff

Forum

Now, this is just getting redonkulous... 3/1/2010
Re: Singing softly to himself... 7/12/2009
Re: Singing softly to himself... 7/12/2009
Re: Singing softly to himself... 31/7/2009

Lifestream

Published My Day for March 11th.

— 1d ago via kozaru.net
Battlestar Galactica Online Is Coming http://ff.im/hfiR4 [nemesisau]

— 2d ago via Twitter
RT @CapricaSeven: RT @blue439: Grammar strange, Polish. And the wild thing is sentence seems halting, unsure. http://yfrog.com/4p779ej [nemesisau]

— 2d ago via Twitter
Shared Battlestar Galactica Online Is Coming.

— March 9th via Google Reader
Published My Day for March 10th.

— March 9th via kozaru.net
Not far off completing a days work in a single day. Trying to maintain focus. Oooh, jellybeans! [nemesisau]

— March 9th via Twitter
RT @lbmfg: @RedHillBrewery rather be picking hops than at work! <- I second that. [nemesisau]

— March 9th via Twitter
Published My Day for March 9th.

— March 8th via kozaru.net
Published My Day for March 8th.

— March 7th via kozaru.net
Watching Office Space. http://twitpic.com/175ftc [nemesisau]

— March 7th via Twitter
Shared nemesisau: http://twitpic.com/175ftc.

— March 7th via TwitPic
In general terms, if I send you a 500-word list of problems, a 3 word answer is insufficient. No I won't do it for you. #thecustomersthe [nemesisau]

— March 5th via Twitter
"Company creates small condoms for 12yos" http://bit.ly/b3wBcR I hope they are not printed with Bob The Builder or Dora The Explorer. [nemesisau]

— March 4th via Twitter
Published My Day for March 5th.

— March 4th via kozaru.net
Once again, Giant V == Sleepytime [nemesisau]

— March 4th via Twitter
I love it how when my boss has nothing to do, he thinks I have nothing to do as well, so I must therefore be up for a chat. [nemesisau]

— March 3rd via Twitter
Published My Day for March 4th.

— March 3rd via kozaru.net
A Recurring Theme http://ff.im/gQys0 [nemesisau]

— March 3rd via Twitter
Published My Day for March 3rd.

— March 2nd via kozaru.net
Shared A Recurring Theme.

— March 2nd via Google Reader