ubuntu 操作系统下的ufw 防火墙配置
1)查看状态
ufw status
2)启用防火墙
root@meng:~# ufw enable
Command may disrupt existing ssh connections. Proceed with operation (y|n)? y
Firewall is active and enabled on system startup
root@meng:~# ufw status
Status: active
3)允许ssh连接
ufw allow ssh
root@meng:~# ufw status
Status: active
root@meng:~# ufw allow ssh
Rule added
Rule added (v6)
root@meng:~# ufw status
Status: active
To Action From
22/tcp ALLOW Anywhere
22/tcp (v6) ALLOW Anywhere (v6)
4)允许特定端口(如80端口)
ufw allow 80/tcp
5)拒绝特定IP地址的访问
ufw deny from 192.168.1.100
6)重置规则
ufw reset
root@meng:~# ufw status
Status: active
To Action From
22/tcp ALLOW Anywhere
80/tcp ALLOW Anywhere
Anywhere DENY 192.168.1.100
22/tcp (v6) ALLOW Anywhere (v6)
80/tcp (v6) ALLOW Anywhere (v6)
root@meng:~# ufw reset
Resetting all rules to installed defaults. This may disrupt existing ssh
connections. Proceed with operation (y|n)? y
Backing up 'user.rules' to '/etc/ufw/user.rules.20240815_141221'
Backing up 'before.rules' to '/etc/ufw/before.rules.20240815_141221'
Backing up 'after.rules' to '/etc/ufw/after.rules.20240815_141221'
Backing up 'user6.rules' to '/etc/ufw/user6.rules.20240815_141221'
Backing up 'before6.rules' to '/etc/ufw/before6.rules.20240815_141221'
Backing up 'after6.rules' to '/etc/ufw/after6.rules.20240815_141221'
root@meng:~# ufw status
Status: inactive
root@meng:~# ufw enable
Command may disrupt existing ssh connections. Proceed with operation (y|n)? y
Firewall is active and enabled on system startup
root@meng:~# ufw status
Status: active