Skip to content

Instantly share code, notes, and snippets.

@drAlberT

drAlberT/CS_ufw.md

Last active March 13, 2024 17:56
Show Gist options
  • Star 14 You must be signed in to star a gist
  • Fork 3 You must be signed in to fork a gist
  • Save drAlberT/17e1f67f1e566c2ded50 to your computer and use it in GitHub Desktop.
Save drAlberT/17e1f67f1e566c2ded50 to your computer and use it in GitHub Desktop.
Download ZIP
UFW Cheatsheet
Raw
CS_ufw.md

UFW cheat sheet

Usage

ufw [--dry-run] enable|disable|reload
ufw [--dry-run] default allow|deny|reject [incoming|outgoing]
ufw [--dry-run] logging on|off|LEVEL
    toggle logging. Logged packets use the LOG_KERN syslog facility. Systems configured for rsyslog
    support may also log to /var/log/ufw.log. Specifying a LEVEL turns logging on for the specified LEVEL.
    The default log level is 'low'.
ufw [--dry-run] reset
ufw [--dry-run] status [verbose|numbered]
ufw [--dry-run] show REPORT
ufw [--dry-run] [delete] [insert NUM] allow|deny|reject|limit [in|out] [log|log-all] PORT[/protocol]
ufw [--dry-run] [delete] [insert NUM] allow|deny|reject|limit [in|out on INTERFACE] [log|log-all]
    [proto protocol] [from ADDRESS [port PORT]] [to ADDRESS [port PORT]]
ufw [--dry-run] delete NUM
ufw [--dry-run] app list|info|default|update

Examples

  • ufw status verbose
  • ufw app list
  • ufw allow in on eth0 log from any to any app SSH-22022
  • ufw [delete] allow in proto udp from 193.204.114.105 to 12.34.56.78 port 123
@colthreepv
Copy link

Why this is not the official doc?
It's so concise and clear 🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment