```bash # Turn the firewall on sudo ufw enable # Set the default policy sudo ufw default allow outgoing sudo ufw default deny incoming # Get apps list sudo ufw app list # Example: # Available applications: # Nginx Full # Add allow for named app sudo ufw allow "Nginx Full" # Allow specific port sudo ufw allow 2222/tcp # Specific port on protocol sudo ufw allow proto tcp from any to any port 80,443 # Allow port range sudo ufw allow 5000:5003/tcp # Allow IP address sudo ufw allow from 192.168.56.1 # Allow IP to specific port sudo ufw allow from 192.168.56.1 to any port 22 # Allow subnet sudo ufw allow from 192.168.56.0/24 to any port 22 # Deny outgoing port sudo ufw deny out 25 ``` | Task | Command | | --------------------------------- | -------------------------------- | | Reset all rules | sudo ufw reset | | Deny from IP | sudo ufw deny from 192.168.56.1 | | Allow from IP | sudo ufw allow from 192.168.56.1 | | Delete rule by number | sudo ufw delete 2 | | Delete by rule | sudo ufw delete allow 80 | | List rules with numbers | sudo ufw status numbered | | List rules with policies | sudo ufw status verbose | | Allow specific port | sudo ufw allow 2222 | | Allow specific port with protocol | sudo ufw allow 2222/tcp |