Questions tagged [ufw]
ufw is the default firewall application for Ubuntu Linux.
123
questions
0
votes
0
answers
16
views
Firewall limit not working when using vpn
I have a ufw firewall with the following rules:
Status: active Logging: on (low) Default: deny (incoming), allow (outgoing), deny (routed) New profiles: skip
To Action From
22/tcp LIMIT IN Anywhere
80 ...
- 101
1
vote
0
answers
113
views
ufw forward rule isn't working: connection refused
I'm running a Raspberry Pi and I'm trying to get Pi-hole working. I'm running the container from Podman from a newly created pi-hole user (non root). I published the ports as follows:
- 127.0.0.1:5053:...
0
votes
1
answer
71
views
Is it possible to use ufw when kernel.modules_disabled=1
I am following
Mastering Linux Security and Hardening 3rd ed. by Donald a. Tevault
on Ubuntu 22.04 VPS.
I have accepted suggested by lynis value 1 for kernel parameter kernel.modules_disabled, as ...
- 3
0
votes
1
answer
363
views
UFW: allow all but restrict only one port
I have an application running on port 1111.
Is there any way to set up UFW so that it allows anything, but if the port is 1111, then it allows access only from certain IP to this port? Any other ports ...
- 3
0
votes
1
answer
132
views
UFW settings for a VPN on a Rasperry Pi
I have recently set up a headless Rasperry Pi, using Raspberry Pi OS Lite.
I set up Wireguard and some UFW rules.
The outcome that I would like to have:
all network traffic is blocked except for ...
- 1
0
votes
1
answer
71
views
ufw temporarily reject port on localhost for local testing
I don't understand why those two commands don't block Port 8391 locally.
sudo ufw reject from 127.0.0.1 to 127.0.0.1 port 8391
telnet 127.0.0.1 8391
Trying 127.0.0.1...
Connected to 127.0.0.1.
Escape ...
1
vote
0
answers
17
views
How to configure ufw firewall for Mastodon bot
I have made this bot for Mastodon with mastodon.py:
https://github.com/aitormendez/loro/blob/main/loro.py
The bot listens to mentions and responds to them. I have it running at home on a raspberry pi ...
- 111
0
votes
1
answer
188
views
docker container reachable despite firewall denying incoming traffic
I am in the process of setting up a VPS to run a few docker packages.
The firewall set up to block any incoming traffic (default) just allowing anything that comes in via Wireguard VPN.
Still the ...
0
votes
0
answers
79
views
UFW not filtering FORWARD traffic on same (tun0) interface
I have an Ubuntu 22.04 server with OpenVPN running and I want to filter access between clients on the tun0 interface with UFW.
As far as I know this all has to do with the FORWARDING chain within UFW.
...
- 1
0
votes
2
answers
129
views
Is my home network being attacked?
I started to learn about network security and firewalls. My network is very simple, I have a router (MikroTik) and my laptop is connected to it via WLAN. The router has following (default) firewall ...
0
votes
1
answer
506
views
Trying to allow a device access to the Internet through ufw using a shared ethernet port on Raspberry Pi while on Wi-Fi
I'm attempting to share my Raspberry Pi's ethernet port so I can connect an ethernet device (indirectly) to Wi-Fi while still protecting the device (and Pi) with a firewall (in this case ufw with gufw ...
- 101
0
votes
0
answers
276
views
ufw firewall blocking / logging too much, syslog is getting spammed
I set up ufw firewall on a Debian 12.1 sever. This is my configuration:
sudo ufw status verbose
Status: active
Logging: on (low)
Default: allow (incoming), allow (outgoing), deny (routed)
New profiles:...
- 1
0
votes
1
answer
619
views
Port connection to docker container within Ubuntu UFW
Please help clarify why the connection below is allowed.
I've set a Windows Server (IP 192.168.10.10) with Hyper-V running Ubuntu (IP 10.0.0.9). Within Ubuntu I've installed Docker, then some ...
- 101
2
votes
0
answers
967
views
ufw blocks KVM guest from getting ip address and accessing network
I need help getting ufw on a host computer to allow traffic to a virtual machine that it hosts.
More specifically, I am running Ubuntu 23.04 Server with a KVM virtual machine on a bridged network. My ...
0
votes
0
answers
67
views
Forwarded packet seemingly, skipping POSTROUTING rules
I have a very simple Wireguard configuration. Client are assigned 10.7.0.0/24 addressed, traffic is forwarded out the primary interface, finally the packets are SNAT'd out of the primary interface on '...
- 101