LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Networking (http://www.linuxquestions.org/questions/linux-networking-3/)
-   -   ufw (http://www.linuxquestions.org/questions/linux-networking-3/ufw-818364/)

judoka 07-06-2010 05:53 PM

ufw
 
when I enable my ufw it completely shuts me out and I have no internet connection.
when i do:
Code:

sudo ufw status numbered
I get:
Quote:

Status: active

To Action From
-- ------ ----
[ 1] 80 ALLOW IN Anywhere
[ 2] 80 ALLOW OUT Anywhere (out)

but i need to disable my ufw in order to reconnect back to the internet.
Why is that? Doesn't the above rules indicate that I should have inbound and outbound traffic even if my firewall is up?

unSpawn 07-06-2010 06:25 PM

Even if you're using a firewall front-end troubleshooting rules is more efficient and easier if you list those rules. As root user run: (sudo) 'sort -r /proc/net/ip_tables_names | xargs -iN iptables -t 'N' --line-numbers -nvxL > /tmp/iptables_rules.tmp;'. If you understand iptables you can read them ('less /tmp/iptables_rules.tmp') else you could *attach* the file to this thread. Elif you're cool with troubleshooting rules yourself then precede all "-j DROP" rules with "-j LOG --prefix='dropped_reason '" rules (or watch 'iptables -t 'N' -nvxL' counters) to see what gets dropped where.

judoka 07-06-2010 06:40 PM

when i do:
Code:

$ sudo sort -r /proc/net/ip_tables_names | xargs -iN iptables -t 'N' --line-numbers -nvxL > /tmp/iptables_rules.tmp;
i get:
Quote:

iptables v1.4.4: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.

unSpawn 07-07-2010 12:37 AM

'sudo (sudo sort -r /proc/net/ip_tables_names | xargs -iN iptables -t 'N' --line-numbers -nvxL > /tmp/iptables_rules.tmp)'?

unSpawn 07-08-2010 10:40 AM

This thread was marked "solved" but without offering any explanation, feedback or solution. LQ members and visitors depend on finding an answer in this thread. So please add your solution or mark the thread unsolved.

judoka 07-08-2010 03:03 PM

I stopped using ufw, and set up my firewall with firewall builder; however, wasn't able to install it using the fwbuilder built-in installer. I found this link and installed it manuallyhttp://www.howtoforge.com/using-buil...all-builder-p2
I still would appreciate someone helping me out with how to install the policy that I created with fwbuilder with its built-in installer. I spent a lot of time reading the docs but couldn't find it there. The error I get is
Quote:

scp: /etc/fw/tmp/: Is a directory

SSH session terminated, exit status: 1
this error is presented on the installation stage after the compile went fine, so if anyone has any idea how to go about fixing this leave me a message.


All times are GMT -5. The time now is 02:11 AM.