How to setup UFW
yum -y install ufw
ufw status
‘Status: inactive’
sudo ufw default deny incoming
sudo ufw default allow outgoing
sudo ufw allow ssh
sudo ufw allow https
sudo ufw allow 2222/tcp
To add a range of ports, for passive FTP maybe, the following syntax is available:
sudo ufw allow 21000:21100/tcp
sudo ufw allow from 115.xxx.187.xxx
sudo ufw allow from xxx.23.000.xxx
sudo ufw deny from 123.123.123.123
sudo ufw status numbered
Status: active
To Action From
— —— —-
[ 1] 224.0.0.251 mDNS ALLOW IN Anywhere
[ 2] Anywhere ALLOW IN 123.123.123.123
[ 3] 25 ALLOW IN Anywhere
[ 4] 80 ALLOW IN Anywhere
[ 5] 443 ALLOW IN Anywhere
[ 6] 465 ALLOW IN Anywhere
[ 7] 993 ALLOW IN Anywhere
[ 8] 995 ALLOW IN Anywhere
[ 9] ff02::fb mDNS ALLOW IN Anywhere (v6)
[10] 25 (v6) ALLOW IN Anywhere (v6)
[11] 80 (v6) ALLOW IN Anywhere (v6)
[12] 443 (v6) ALLOW IN Anywhere (v6)
[13] 465 (v6) ALLOW IN Anywhere (v6)
[14] 993 (v6) ALLOW IN Anywhere (v6)
[15] 995 (v6) ALLOW IN Anywhere (v6)
sudo ufw delete
sudo ufw enable
sudo systemctl enable ufw
sudo ufw disable
sudo ufw reset
ufw status
Status: inactive
ufw enable
cat /etc/ufw/ufw.conf | grep ENABLED
ENABLED=no