Uncomplicated Firewall (UFW)
a user-friendly front end for managing firewall rules, built on top of iptables (older systems) or nftables (newer systems) - ChatGPT / using UFW
Basic Commands
$ sudo ufw enable # Turn the firewall on
$ sudo ufw disable # Turn it off
$ sudo ufw status # Show current rules
$ sudo ufw allow in on enx6c1ff76c1d75 to any port 2049 proto tcp # specific interface
$ sudo ufw deny in to any port 2049 # deny otherwise
$ sudo ufw reload
$ sudo ufw status verbose # list rules
$ sudo ufw allow ssh # Allow SSH (port 22)
$ sudo ufw allow 80 # Allow HTTP
$ sudo ufw deny 23 # Block Telnet
$ sudo ufw delete allow 80 # Remove a ruleRules rules
Explaination about rules format
$ sudo ufw status verbose
Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), disabled (routed)
New profiles: skip
To Action From
-- ------ ----
2049/tcp on enx6c1ff76c1d75 ALLOW IN Anywhere
2049 DENY IN Anywhere
2049/tcp (v6) on enx6c1ff76c1d75 ALLOW IN Anywhere (v6)
2049 (v6) DENY IN Anywhere (v6) Logs
$ sudo ufw status verbose # check logs level
$ sudo ufw logging on
$ sudo ufw logging low # default, least verbose
$ sudo ufw logging medium
$ sudo ufw logging high
$ sudo ufw logging full # very verbose
$ sudo less /var/log/ufw.log
or
$ sudo tail -f /var/log/ufw.log # real time
$ sudo grep "BLOCK" /var/log/ufw.log # blocked traffic
Written on February 2, 2026, Last update on
network
security