openpolitics.com

How To Set Up a Firewall with UFW on Ubuntu 18.04

Step 1 — Using IPv6 with UFW (Optional)

This tutorial is written with IPv4 in mind, but will work for IPv6 as well as long as you enable it. If your Ubuntu server has IPv6 enabled, ensure that UFW is configured to support IPv6 so that it will manage firewall rules for IPv6 in addition to IPv4. To do this, open the UFW configuration with nano or your favorite editor.

• sudo nano /etc/default/ufw

Copy

Then make sure the value of IPV6 is yes. It should look like this:

/etc/default/ufw excerpt

<span class="token assign-left variable">IPV6</span><span class="token operator">=</span><span class="highlight">yes</span>

Copy

Save and close the file. Now, when UFW is enabled, it will be configured to write both IPv4 and IPv6 firewall rules. However, before enabling UFW, we will want to ensure that your firewall is configured to allow you to connect via SSH. Let’s start with setting the default policies.

• sudo ufw allow 443
• sudo ufw allow https

 

Step 4 — Enabling UFW

To enable UFW, use this command:

• sudo ufw enable

Copy

You will receive a warning that says the command may disrupt existing SSH connections. We already set up a firewall rule that allows SSH connections, so it should be fine to continue. Respond to the prompt with y and hit ENTER.