Skip to content

Instantly share code, notes, and snippets.

@AndreaGhizzoni

AndreaGhizzoni/ufw_commands.md

Last active June 9, 2019 09:33
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save AndreaGhizzoni/8f0b8ea0eee9fdd9a5ef24184210d4a6 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save AndreaGhizzoni/8f0b8ea0eee9fdd9a5ef24184210d4a6 to your computer and use it in GitHub Desktop.
Download ZIP
ufw_commands.md
Raw
ufw_commands.md

setup

enable/disable ufw

sudo ufw enable|disable

enable at startup

sudo systemctl ufw enable

check default configuration

grep `DEFAULT_` /etc/default/ufw

change default

sudo ufw default allow outgoing
sudo ufw default deny incoming

show rules

show current rules

sudo ufw verbose numbered

show current application listening in the system

sudo ufw show listening

show logs

display live log

sudo tail -f /var/log/ufw.log

add rule

allow incoming connection: $REMOTE_IP = 192.168.0.0/24 | 192.168.1.1 $REMOTE_PORT = 3000:5000 | 3999 $LOCAL_INTERFACE = eth0 $LOCAL_PORT = 22 | 443

sudo ufw allow \
    in on $LOCAL_INTERFACE \
    from $REMOTE_IP[:$REMOTE_PORT] \
    to any port $LOCAL_PORT

remove rule

delete connection

sudo ufw status numbered

[...]

sudo ufw delete 2
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment