Linux Mint Forums

Skip to content

Unable to get Firewall to deny/allow any connections

All Gurus once were Newbies
Forum rules
There are no such things as "stupid" questions. However if you think your question is a bit stupid, then this is the right place for you to post it. Please stick to easy to-the-point questions that you feel people can answer fast. For long and complicated questions prefer the other forums within the support section.
Before you post please read this
Post a reply

Unable to get Firewall to deny/allow any connections

Postby zeldarocks on Sun Feb 03, 2013 6:56 am

I recently installed ufw and gufw as the gui; I've attempted to set up my firewall in ufw, but to no avail. It seems like the firewall does not want to block any traffic regardless of the settings. I set it to deny outbound/inbound and I can still access the web without difficulty. What am I missing?
zeldarocks
Level 1
Level 1
 
Posts: 7
Joined: Sun Feb 03, 2013 6:52 am
Top
Linux Mint is funded by ads and donations.
 
Top

Re: Unable to get Firewall to deny/allow any connections

Postby karlchen on Sun Feb 03, 2013 11:02 am

Hello, zeldarocks.

Please, open a terminal window, run the commandline
Code: Select all
sudo ufw status verbose
and post the output here.

Kind regards,
Karl
Enlightened by Lucid Lynx, enchanted by Maya Mint, productive on Precise Pangolin's Minty sister
User avatar
karlchen
Level 5
Level 5
 
Posts: 940
Joined: Sat Dec 31, 2011 7:21 am
Top

Re: Unable to get Firewall to deny/allow any connections

Postby zeldarocks on Sun Feb 03, 2013 4:05 pm

Status: active
Logging: on (low)
Default: reject (incoming), reject (outgoing)
New profiles: skip

To Action From
-- ------ ----
80 ALLOW IN Anywhere
443 ALLOW IN Anywhere
80 ALLOW IN Anywhere (v6)
443 ALLOW IN Anywhere (v6)

I have allowed http and https but blocked all else...
zeldarocks
Level 1
Level 1
 
Posts: 7
Joined: Sun Feb 03, 2013 6:52 am
Top

Re: Unable to get Firewall to deny/allow any connections

Postby karlchen on Sun Feb 03, 2013 5:20 pm

Hello, zeldarocks.

Firewall software will go through the list of incoming/outgoing rules top down and apply the first matching rule.
Hence, in case the first rule ufw finds is the default rule: deny any incoming and outgoing traffic, it will do so.
Trying to soften this rule later on will not have any effect.
I am afraid you will have to consult the usfw manpages in order to find out how to make sure that the rules are created and stored in this order:

80 ALLOW IN Anywhere
443 ALLOW IN Anywhere
80 ALLOW IN Anywhere (v6)
443 ALLOW IN Anywhere (v6)
reject any other requests

Yet, I am not sure whether blocking absolutely all outgoing packages is really what you want and need.

Karl
Enlightened by Lucid Lynx, enchanted by Maya Mint, productive on Precise Pangolin's Minty sister
User avatar
karlchen
Level 5
Level 5
 
Posts: 940
Joined: Sat Dec 31, 2011 7:21 am
Top

Re: Unable to get Firewall to deny/allow any connections

Postby zeldarocks on Sun Feb 03, 2013 5:54 pm

That IS the order the rules are in though. Can you elaborate on what needs to be done?

I've been toying around with it since yesterday, yet it won't actually follow directions.
zeldarocks
Level 1
Level 1
 
Posts: 7
Joined: Sun Feb 03, 2013 6:52 am
Top

Re: Services Disabled by Default on Mint?

Postby zeldarocks on Mon Feb 04, 2013 9:48 am

That reminds me, I'm having problems with ufw; it doesn't want to follow instructions at all. Could you help me?
Last edited by xenopeek on Wed Feb 13, 2013 10:55 am, edited 1 time in total.
Reason: Same subject, so posts moved here.
zeldarocks
Level 1
Level 1
 
Posts: 7
Joined: Sun Feb 03, 2013 6:52 am
Top

Firestarter/UFW not working.

Postby zeldarocks on Wed Feb 06, 2013 5:59 pm

I'm installed both Firestarter and GUFW, and have been unable to get either of them to work: every time I specify deny/allow, it does not follow through with instructions; as if I had done nothing. I've tried reinstalling, uninstalling, using UFW on its own, and vice versa. I need to get this resolved ASAP.
Last edited by xenopeek on Wed Feb 06, 2013 6:52 pm, edited 1 time in total.
Reason: Same subject, so topics merged.
zeldarocks
Level 1
Level 1
 
Posts: 7
Joined: Sun Feb 03, 2013 6:52 am
Top

Re: Firestarter/UFW not working.

Postby sammiev on Wed Feb 06, 2013 6:45 pm

You can not use both of those programs together. When you make a change in a firewall you need to reset the firewall so the changes take place. Easiest way is to disable it and then re-enable it.
User avatar
sammiev
Level 3
Level 3
 
Posts: 115
Joined: Sat May 19, 2012 12:16 pm
Top

Re: Services Disabled by Default on Mint?

Postby 3.14159 on Wed Feb 13, 2013 10:01 am

zeldarocks wrote:That reminds me, I'm having problems with ufw; it doesn't want to follow instructions at all. Could you help me?


Are you making the changes as root (sudo)?

Describe what it is you do and what errors/messages/behaviors you are seeing.
"A great man is always willing to be little." ~ Ralph Waldo Emerson
System: Intel Core i7 920 / 12GB RAM / 2.1TB disk space / ATI Radeon HD 6870 -/- On Linux Mint 14 "Nadia" Cinnamon
User avatar
3.14159
Level 1
Level 1
 
Posts: 41
Joined: Thu Dec 13, 2012 9:13 am
Location: Look behind you.
Top
Linux Mint is funded by ads and donations.
 
Top
Post a reply

Return to Newbie Questions

Who is online

Users browsing this forum: mintymate and 18 guests

Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group