You are not logged in.

#1 2017-05-15 09:24:50

sitilge
Member
Registered: 2016-07-16
Posts: 6

Unable to allow specific ip addresses in ufw

I am not able to get my ufw rules working. As far as I understand, the default behavior is to deny all incoming connections thus the command

ufw allow from 192.168.0.101 to any port http

should enable incoming http connections for the specific ip. However, the requests are blocked by the firewall. I've also tried to explicitly deny and then allow but it isn't working either.

The output of ufw status verbose is

To                         Action      From
--                         ------      ----
631/tcp                    ALLOW IN    Anywhere                  
22                         ALLOW IN    Anywhere                  
80                         ALLOW IN    192.168.0.101                      
631/tcp (v6)               ALLOW IN    Anywhere (v6)             
22 (v6)                    ALLOW IN    Anywhere (v6)

Offline

#2 2017-05-15 19:22:29

paulkerry
Member
From: Sheffield, UK
Registered: 2014-10-02
Posts: 611

Re: Unable to allow specific ip addresses in ufw

sanity check - have you got a service running on port 80 and granted access permission to more than localhost?

[edit: typo]

Last edited by paulkerry (2017-05-18 19:21:42)

Offline

#3 2017-05-16 09:03:14

sitilge
Member
Registered: 2016-07-16
Posts: 6

Re: Unable to allow specific ip addresses in ufw

Uhm, i have nginx running and there is only one server directive that listens to port 80.

Offline

#4 2017-05-18 19:23:55

paulkerry
Member
From: Sheffield, UK
Registered: 2014-10-02
Posts: 611

Re: Unable to allow specific ip addresses in ufw

As mentioned on https://wiki.archlinux.org/index.php/Un … d_Firewall post...

ufw show raw

and

iptables -S

Offline

Board footer

Powered by FluxBB