ufw (Uncomplicated FireWall)

• is a command-line wrapper for iptables
• gufw is a GUI wrapper for ufw

Installation

apt-get

1. install ufw

  apt-get install ufw

2. verify ufw was installed

  which ufw

Commands

Click here to expand...

START & STOP

start firewall

sudo ufw enable

stop firewall

sudo ufw disable

STATUS & DISPLAY RULES

check status of ufw firewall

sudo ufw status

check status of ufw firewall and displays rules

sudo ufw status verbose

GENERAL RULE

denies every port by default (both incoming and outbound packets)

sudo ufw default deny

denies every port by default (only incoming packets)

sudo ufw default deny incoming

allows every port by default

sudo ufw default allow

SPECIFIC RULE

allows port 80

sudo ufw allow 80

denies port 80

sudo ufw deny 80

IP ADDRESS

allows 207.1.1.40 for every port

sudo ufw allow from 207.1.1.40

allows 207.1.1.40 to go through port 20

sudo ufw allow from 207.1.1.40 to 20

DELETE A RULE

deletes a rule

sudo ufw delete allow 80

sudo ufw status numbered

ufw delete (rule number here)

PROFILES

show available app profiles

sudo ufw app list

allow a profile

sudo ufw allow 'Apache Full'