HxHippy

ufw

Uncomplicated Firewall - frontend for iptables

Overview

UFW provides a user-friendly command-line interface for managing iptables firewall rules. Designed to be easy to use while still being powerful.

Syntax

ufw [--dry-run] [options] [rule syntax]

Common Options

enable

Enable the firewall.

disable

Disable the firewall.

status

Show firewall status.

status verbose

Show detailed firewall status.

status numbered

Show firewall status with rule numbers.

allow

Add an allow rule.

deny

Add a deny rule.

delete

Delete a rule.

reset

Reset firewall to default state.

reload

Reload firewall rules.

default

Set default policy.

Examples

$ sudo ufw status

Check if the firewall is active and show rules.

$ sudo ufw enable

Enable the firewall.

$ sudo ufw disable

Disable the firewall.

$ sudo ufw allow 22

Allow SSH connections on port 22.

$ sudo ufw allow ssh

Allow SSH connections using service name.

$ sudo ufw allow 80,443/tcp

Allow HTTP and HTTPS.

$ sudo ufw allow from 192.168.1.0/24

Allow all traffic from a subnet.

$ sudo ufw deny 23

Block Telnet connections.

$ sudo ufw delete allow 8080

Delete the rule allowing port 8080.

$ sudo ufw default deny incoming

Set default to deny incoming connections.

$ sudo ufw default allow outgoing

Set default to allow outgoing connections.

$ sudo ufw status numbered

Show rules with numbers for easy deletion.

$ sudo ufw delete 3

Delete rule number 3.

ufwfirewalliptablessecurityubuntuuncomplicated