UFW blocking certain incoming requests and not sure why
Hi,
I'm a firewall beginner, so please be kind. I'm running UFW (Uncomplicated/Ubuntu FireWall) on a computer acting as a Privoxy server for my LAN and have set it up as follows (only the relevant info is given): Code:
ufw allow from <my network range>/28 to any app Privoxy Code:
[Privoxy] Code:
[UFW BLOCK] IN=eth0 OUT= MAC=<REDACTED> SRC=<REDACTED> DST=<REDACTED> LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=37797 DF PROTO=TCP SPT=60505 DPT=8118 WINDOW=8192 RES=0x00 ACK FIN URGP=0 I've determined that the Source IP address is one of my devices, and that I was probably using it to listen to a BBC iPlayer radio show at the time. The Source IP address lies within the range permitted by the Firewall rule. The Destination IP address and port is Privoxy, so nothing untoward there. So, why is UFW blocking these incoming requests? If the Source IP Address, Destination Port and Destination IP Address are all valid, shouldn't UFW let these requests through? |
Quote:
Quote:
|
Quote:
|
Running
Code:
sudo which iptables-save Code:
sudo /sbin/iptables-save > /tmp/iptables.txt 2>&1 |
Thanks for the quick replies. Here's the content you asked for:
Code:
# Generated by iptables-save v1.4.8 on Wed Mar 27 02:11:06 2013 |
Make sure you still have the previous rule set file (if anything fails you can load it similarly) and reload rule set below like this:
Code:
echo 'cat smells_of_elderberries.ufw1.txt > /sbin/iptables-restore' > /tmp/iptables.sh Code:
# Generated by iptables-save v1.4.8 on Wed Mar 27 02:11:06 2013 |
Sorry for not responding sooner. Truth is I didn't fully understand your last response. So to clarify:
1) I copy the code at the end of your post into a file called "smells_of_elderberries.ufw1.txt" (or whatever) 2) On the server, do: Quote:
Quote:
From what you say, once I've done that I should then return my settings to their original settings by repeating step 1 above, only replacing the text file with one that contains the code I myself posted in post 5 above. Is that right? |
Are you certain your subnet is a /28? I'm guessing (since your IPs start with 172) you're probably in the RFC 1918 space, where subnetting to /24 is far more common. If the SRC host is not within the /28 (i.e., wrong subnetting) you might have some not allowed in to Privoxy.
|
I just tried increasing the subnet range to /24, but tail -f /var/log/syslog still shows UFW blocking requests to port 8118. :(
Thanks though. |
Quote:
Code:
cat smells_of_elderberries.ufw1.txt > /sbin/iptables-restore Quote:
Code:
cat /tmp/iptables.txt > /sbin/iptables-restore |
Quote:
I'll consider this thread closed unless I decide that iptables really isn't for me. Thanks for the assist. |
All times are GMT -5. The time now is 04:18 PM. |