Sunday, November 16, 2008

Ubuntu simplified firewall

I'm liking the simplicity of ufw so far. I have done some pretty hardcore ipfw & ip filter in the past but anytime I go more than 6 months without using it I completely forget all the syntax and have to start over from square one. ufw is incredibly simple to use:

$ ufw enable

$ ufw default deny

$ ufw allow 22/tcp

$ ufw allow proto udp 192.168.1.10 port 67 to 192.168.1.103 port 67


See your ruleset with:

$ ufw status



That's about it. Quick and easy way to harden an install with about 45 seconds of work. You can use gufw for GUI management.

No comments: