Thứ Sáu, 5 tháng 4, 2019

Common UFW Firewall Rules and Commands 

ufw [--dry-run] enable|disable|reload
ufw [--dry-run] default allow|deny|reject [incoming|outgoing]
ufw [--dry-run] logging on|off|LEVEL
    toggle logging. Logged packets use the LOG_KERN syslog facility. Systems configured for rsyslog
    support may also log to /var/log/ufw.log. Specifying a LEVEL turns logging on for the specified LEVEL.
    The default log level is 'low'.
ufw [--dry-run] reset
ufw [--dry-run] status [verbose|numbered]
ufw [--dry-run] show REPORT
ufw [--dry-run] [delete] [insert NUM] allow|deny|reject|limit [in|out] [log|log-all] PORT[/protocol]
ufw [--dry-run] [delete] [insert NUM] allow|deny|reject|limit [in|out on INTERFACE] [log|log-all]
    [proto protocol] [from ADDRESS [port PORT]] [to ADDRESS [port PORT]]
ufw [--dry-run] delete NUM
ufw [--dry-run] app list|info|default|update

Examples


    

  • ufw status verbose
    • 

  • ufw app list
    • 

  • ufw allow in on eth0 log from any to any app SSH-22022
    • 

  • ufw [delete] allow in proto udp from 193.204.114.105 to 12.34.56.78 port 123
    • 

  • ufw deny from 15.15.15.51
    • 

  • ufw deny in on eth0 from 15.15.15.51
    • 

  • ufw allow ssh
    • 

  • ufw allow 22
    • 

  • ufw allow from 15.15.15.0/24  to any port 22
    • 

  • ufw allow from 15.15.15.0/24 to any port 873
    • 

  • ufw allow proto tcp from any to any port 80,443
    • 

  • ufw allow from 15.15.15.0/24 to any port 3306
    • 

  • ufw allow in on eth1 to any port 3306
    • 

  • ufw deny out 25
    • 

  • ufw status numbered
    • 

  • ufw delete rule_number
    • 

  • ufw insert 1 your_rule
    • 

  • 

    •

Share This!


Người đăng: vào lúc

Không có nhận xét nào:

Đăng nhận xét

Đăng ký: Đăng Nhận xét (Atom)