sudo ufw allow 80
允许外部访问80端口
sudo ufw delete allow 80
禁止外部访问80 端口
sudo ufw allow from 192.168.1.1
允许此IP访问所有的本机端口
sudo ufw deny smtp
禁止外部访问smtp服务
sudo ufw delete allow smtp
删除上面建立的某条规则
sudo ufw deny proto tcp from 10.0.0.0/8 to 192.168.0.1 port
要拒绝所有的流量从TCP的10.0.0.0/8 到端口22的地址192.168.0.1
sudo ufw allow from 192.168.31.21 to any port 9000
$ sudo ufw -h
[sudo] password for store:
ERROR: Invalid syntax
Usage: ufw COMMAND
Commands:
enable enables the firewall
disable disables the firewall
default ARG set default policy
logging LEVEL set logging to LEVEL
allow ARGS add allow rule
deny ARGS add deny rule
reject ARGS add reject rule
limit ARGS add limit rule
delete RULE|NUM delete RULE
insert NUM RULE insert RULE at NUM
route RULE add route RULE
route delete RULE|NUM delete route RULE
route insert NUM RULE insert route RULE at NUM
reload reload firewall
reset reset firewall
status show firewall status
status numbered show firewall status as numbered list of RULES
status verbose show verbose firewall status
show ARG show firewall report
version display version information
Application profile commands:
app list list application profiles
app info PROFILE show information on PROFILE
app update PROFILE update PROFILE
app default ARG set default application policy