❑ UFW(Uncomplicated FireWall)
❍ The firewall service that makes iptables easy to use(ufw.service).
❍ There are chains for ufw in iptables.
❍ The different service from firewalld.
❑ To execute ufw without collision, shutdown firewalld and clean up iptables chains.
1. # systemctl stop firewalld
2. # systemctl mask firewalld
3. # iptables -F
4. # systemctl restart ufw
5. # ufw enable
❑ How to use
| Usage | Description |
| # systemctl [start|stop|restart] ufw | Start/Stop/Restart the ufw service. |
| # ufw [enable|disable] | Start/Stop the ufw service at system startup.
* "# systemctl unmask ufw" setting is required.
|
| # ufw status | Check firewall status, logging status, and rules. |
| # ufw [allow|deny|delete] [Port number]/[tcp|udp] | Append/Delete a firewall rule. |
| # ufw [allow|deny|delete] [Service] | Append/Delete a firewall rule.
* [Service] : The name of the service in /etc/services.
|
| # ufw [allow|deny|delete] from [IP address|Subnet] to [IP address|Subnet] port [Port numer] proto [tcp|udp] | Append/Delete a firewall rule. |
| # ufw delete [Rule number] | Delete a firewall rule. |
| # ufw insert [Rule number] allow from ~ | Insert a firewall rule to specific location. |
| # ufw status numbered | Display each numbered firewall rule. |
| # ufw default [allow|deny] [incoming|outgoing|routed] | Set default firewall rule. |
| # ufw reset | Initialize all firewall rules |
| Check environment | |||
| O S | Ubuntu 16.04 (64bit) | CPU | Intel i7-4710MQ 2.50GHz |
| SHELL | GNU bash (4.3.48) | RAM | 1 GB |