UFW Firewall
Install and run UFW on servers that don't support Jets.
Summary
| Categories |
Flight Plans
|
| Tags |
System
Firewall
|
| Authors |
Cetmix OU
|
| License | AGPL-3 |
| Version | 1.0.0 |
| Call sign | cx_plan_install_and_enable_ufw |
| Website | https://cetmix.com |
Download
2 downloads
This snippet contains 3 items:
-
cx_plan_install_and_enable_ufw Flight Plan that installs and activates the UFW firewall. You can check information about UFW here: https://help.ubuntu.com/community/UFW -
command_show_ufw_logs Command that shows UFW logs -
command_list_active_connections Command that shows current active connections
Default firewall settings allow:
- All connections to 80 and 443 (http and https)
- Outgoing connections to 25, 465 and 587 (SMTP)
- Outgoing connections to 143 and 993 (IMAP)
- Outgoing connections to 110 and 995 (POP3)
- Incoming connections to 22 (SSH) from the IP addresses.
Configuration
Put a comma-separated list of IP addresses into the
ssh_allow_list variable value. Eg 1.2.3.4,8.8.8.8,5.3.5.4IMPORTANT
After running the flight plan you will be not be able to connect from any other IP address besides the one listed in the variable.
However you can modify the flight plan and the firewall script settings to implement your custom behaviour.
This package is distributed under the GNU Affero General Public License v3.0 (AGPL-3) or later license.