Sunday, 3 July 2011

Manage firewall in Ubuntu 11.04

Hi the Ubuntu users.

I suggest ufw to manage the firewall. Check the status
sudo ufw status

enable it or disable it by typing
sudo ufw enable / disable 

There are two default policies for the firewall. Either block all incoming unless otherwise expressed with rules, or allow all incoming connections unless otherwise blocked by rules.
I suggest to block all incoming and to add rules to allow specific ports, protocols or services to access you. However, this can be an issue for common use. Choose your policy wise.

sudo ufw default deny (or) allow
according to your needs. I'll continue assuming I have chosen the deny one.

sudo ufw status 
will list any existing rules. Type 

sudo ufw app list 
to check the allowed services. Now type 

sudo cat /etc/service | grep ftp | cat
to list the services for eg. FTP. To add a rule for port 20 and TCP protocol in ufw type
sudo ufw allow 20/tcp

Check it by typing sudo ufw status
Finally make sure to enable the firewall logging by typing
sudo ufw logging on.

Good luck.

No comments:

Post a Comment

Raspberry pi - Introduction

Hello once again. This is the first of series of Raspberry pi related posts. I believe that the Raspberry pi (rpi from now on) can help u...