Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ufw]

Uncomplicated Firewall is a firewall configuration tool for Linux. It acts as a frontend to iptables. Originally designed for Ubuntu, it is available on many Linux distributions.

Uncomplicated Firewall is a firewall configuration tool for Linux. It acts as a frontend to iptables. Originally designed for Ubuntu, it is available on many Linux distributions.

487 questions
6
votes
1 answer

UFW logging a block on a permitted port

My current ufw status is as follows. UFW is set to default deny. [ 1] SSH ALLOW IN 10.1.0.0/16 [ 2] DNS ALLOW IN 10.1.0.0/16 [ 3] DNS ALLOW IN …
Mike
  • 251
  • 1
  • 3
  • 9
5
votes
1 answer

How to temporarily open a port in ufw for a specific IP address?

I use ufw (Uncomplicated Firewall) on my web server. Right now I have it set up to allow SSH to the world and fail2ban to prevent massive sign in attempts. The web server has ports 80 and 443 open. What I would like to do is close SSH access until…
user16578951
  • 51
5
votes
2 answers

Which UFW messages can logcheck safely ignore?

Logcheck currently sends lots of emails with messages like this Jun 6 19:31:44 kernel: [UFW BLOCK] IN=eth0 OUT= MAC= SRC= DST= LEN=40 TOS=0x00 PREC=0x00 TTL=116 ID=28729 DF PROTO=TCP SPT=56681…
Enrico
  • 491
4
votes
1 answer

ufw reset vs. disable / enable

When is it appropriate to ufw reload versus ufw disable && ufw enable, and vice versa? The reason for asking: According to the ufw man page, "reload reloads firewall." However, documentation provided by the community (e.g., here, here, and here),…
kkurian
  • 173
4
votes
1 answer

How to block an attack on Wordpress using UFW on Ubuntu server?

On ny Ubuntu 14 box I have weird activity looking like attack on Wordpress page. Apache log shows a lot's of this: 191.96.249.54 - - [25/May/2016:00:46:57 +0200] "POST /xmlrpc.php HTTP/1.0" 500 585 "-" "Mozilla/4.0 (compatible: MSIE 7.0; Windows NT…
Kornel
  • 119
3
votes
1 answer

Can UFW read in rules from multiple files?

I see that UFW (UncomplicatedFireWall) will read in its rules from /lib/ufw/user.rules. However, it would be convenient if the rules could by split across multiple files, so that different servers can easily reuse different subsets of rules…
James Allen
  • 31
3
votes
1 answer

UFW blocking port 80 when it should not

I have these rules in UFW (default deny): 80 ALLOW 10.0.0.0/8 443 ALLOW 10.0.0.0/8 80 DENY Anywhere 443 DENY Anywhere I am…
gtuhl
  • 181
2
votes
3 answers

ufw deny network rule not working

Someone keeps trying to login in my dovecot server. I have added a ufw deny rule for a network since he keeps picking different addresses from the same small network, but these deny rules don’t seam to have any effect. It’s only when I specify an…
chmike
  • 448
2
votes
1 answer

UFW allow outbound from ip address, deny from others

I am trying to allow outbound connections from a specific IP address and deny outbound from all other ip addreses on port 80, but can't seem to crack it: These are the commands: ufw deny out 80 ufw allow out from xxx.xx.xx.xx However it is not…
crankshaft
  • 161
2
votes
1 answer

How to use ufw to allow ip access by ranges

I am using a datacenter in Hong Kong (clould provider). I have monitoring servers in tokyo and I am using uwf for ubuntu 64 12.04 to limit access. I have never used ip tables, only ufw. My rules on the clould allow for access for the monitoring IP…
Monty
  • 25
1
vote
2 answers

How to reset ufw without disabling it?

I'd like to reset the ufw settings back to the defaults, apply new settings, and only then reload the firewall. While I'm making the changes I'd like the firewall to keep running with its old settings. man ufw states: reset Disables and resets…
kkurian
  • 173
0
votes
1 answer

UFW - allow connection to specific port from specific IP addres range

how to add rule by UFW that will allow connect to let's say SSH from ip range 10.0.0.10-10.0.0.20 ? does UFW supports --src-range function like iptables?
integratorIT
  • 139
0
votes
1 answer

Ufw denying and re-allowing without adding two rules

So I'm using Fail2ban and the way it bans and unbans IP addresses is by using the ufw deny from xx.xx.xx.xx to any and allow. However, because new rules need to stay on the top of the list (above the allow any any), I can't seem to reallow access…
LewlSauce
  • 151
  • 7
0
votes
1 answer

What happened if I change my IP with UFW deny by IP to port 22 rule?

If I set rule sudo ufw allow from *MY IP* to any port 22 it allow access to my server only for me, but what happen, if my IP change? Will I loose access to the server?
user3013494
  • 51
0
votes
0 answers

ufw rules not properly working to access elasticsearch from outside from certain ips

I have the following rules in my ufw. What i want to allow is access to port 9200 (elasticsearch) from certain IPs. I obviously added some rules but I can't access es from outside with the added IP if ufw is enabled. Is there some mistake in the…
Jurudocs
  • 349
1
2