SlideShare a Scribd company logo

Firewall(linux)

Download as PPT, PDF
Santosh Khadsare
Santosh Khadsare

Ubuntu Firewall

EducationTechnology
1 of 21
Firewall(linux)
UFW NAME • ufw - program for managing a netfilter firewall DESCRIPTION • This program is for managing a Linux firewall and aims to provide an easy to use interface for the user.
UFW • USAGE • ufw [--dry-run] enable|disable • ufw [--dry-run] default allow|deny • ufw [--dry-run] logging on|off • ufw [--dry-run] status • ufw [--dry-run] [delete] allow|deny PORT[/protocol] • ufw [--dry-run] [delete] allow|deny [proto protocol] [from ADDRESS [port PORT]] [to ADDRESS [port PORT]]
UFW options • --version show program’s version number and exit • -h, --help show help message and exit • --dry-run don’t modify anything, just show the changes • enable reloads firewall and enables firewall on boot • disable unloads firewall and disables firewall on boot
UFW options • default allow|deny change the default policy for incoming traffic. Note that existing rules will have to be migrated manually when changing the default policy. • logging on|off toggle logging • status show status of firewall and ufw managed rules • allow RULE allow RULE. See RULE SYNTAX • deny RULE deny RULE. See RULE SYNTAX • delete allow|deny RULE deletes the corresponding allow/deny RULE
UBUNTU • To check status of inbuilt firewall $ sudo ufw status • To set default settings of firewall $ sudo ufw default allow or deny • To enable or disable firewall • $ sudo ufw enable or disable
UBUNTU • To allow traffic from a particular ip (rules) $ sudo ufw allow from 192.168.1.111 • To allow specific ports( set rule) $ sudo ufw allow/deny (port no) (e.g 80) • To delete rule • $ sudo ufw delete allow/deny (port no) (e,g 80)
UBUNTU • To allow traffic from a particular port of an ip (rules) $ sudo ufw allow from 192.168.1.111 to 80(port no)
UFW Examples Allow port 53 • $ sudo ufw allow 53 • Delete Allow port 53 • $ sudo ufw delete allow 53 • Allow port 80 • $ sudo ufw allow 80/tcp • Delete Allow port 80 • $ sudo ufw delete allow 80/tcp • Allow port smtp • $ sudo ufw allow smtp • Delete Allow port smtp • $ sudo ufw delete allow smtp • Allow fro Particular IP • $ sudo ufw allow from 192.168.254.254 • Delete the above rule • $ sudo ufw delete allow from 192.168.254.254 •
GUFW • Moreover, if you feel that the terminal way is a bit annoying, you can use the graphical way of the settings. But, you have to install another tiny package namingGUFW. $ sudo apt-get install gufw • Install .deb package using the following command $ sudo dpkg -i gufw_0.20.7-all.deb
GUFW • Click to edit Master text styles – Second level • Third level – Fourth level » Fifth level
GUFW • Using Gufw • If you want to open Gufw go to Applications--- >Internet--->Gufw Firewall Configuration
GUFW • Once it opens you should see similar to the following screen here you need to click on checkbox next to firewall enabled
GUFW • If you use allow all incoming traffic you should see similar to the following screen
GUFW • If you select Deny incoming traffic with simple configuration screen
GUFW • You can see some preconfigured ports options
GUFW • Some examples configured
UFW • ufw is not intended to provide complete firewall functionality via its command interface, but instead provides an easy way to add or remove simple rules. It is currently mainly used for host-based firewalls. • Administrators can customize before.rules and after.rules as desired using the standard iptables-restore syntax. Rules are evaluated as follows: before.rules first, user.rules next, and after.rules last. • Please note that ufw status only shows rules added with ufw and not the rules found in the /etc/ufw rules files.
UFW • ufw is a front-end for iptables-restore, with its rules saved in /etc/ufw/before.rules, /etc/ufw/ after.rules and /var/lib/ufw/user.rules. • ufw will read in /etc/ufw/sysctl.conf on boot when enabled. To change this behavior, modify /etc/default/ufw.
• Click to edit Master text styles – Second level • Third level – Fourth level » Fifth level
OTW • Third party firewalls for linux • NAT with Ubuntu’s ufw firewall • Fire starter - configuration • Iptables (in detial) ***Class by student officers ***

Recommended

Introduction to PowerShell
Introduction to PowerShellIntroduction to PowerShell
Introduction to PowerShell
Salaudeen Rajack
 
Course 102: Lecture 16: Process Management (Part 2)
Course 102: Lecture 16: Process Management (Part 2) Course 102: Lecture 16: Process Management (Part 2)
Course 102: Lecture 16: Process Management (Part 2)
Ahmed El-Arabawy
 
Anatomy of a Container: Namespaces, cgroups & Some Filesystem Magic - LinuxCon
Anatomy of a Container: Namespaces, cgroups & Some Filesystem Magic - LinuxConAnatomy of a Container: Namespaces, cgroups & Some Filesystem Magic - LinuxCon
Anatomy of a Container: Namespaces, cgroups & Some Filesystem Magic - LinuxCon
Jérôme Petazzoni
 
Linux Administration
Linux AdministrationLinux Administration
Linux Administration
Harish1983
 
Linux systems - Linux Commands and Shell Scripting
Linux systems - Linux Commands and Shell ScriptingLinux systems - Linux Commands and Shell Scripting
Linux systems - Linux Commands and Shell Scripting
Emertxe Information Technologies Pvt Ltd
 
FAT vs NTFS
FAT vs NTFSFAT vs NTFS
FAT vs NTFS
Arshad Qureshi
 
Course 102: Lecture 14: Users and Permissions
Course 102: Lecture 14: Users and PermissionsCourse 102: Lecture 14: Users and Permissions
Course 102: Lecture 14: Users and Permissions
Ahmed El-Arabawy
 
Understanding of linux kernel memory model
Understanding of linux kernel memory modelUnderstanding of linux kernel memory model
Understanding of linux kernel memory model
SeongJae Park
 

Recommended

Introduction to PowerShell
Introduction to PowerShellIntroduction to PowerShell
Introduction to PowerShell
Salaudeen Rajack
 
Course 102: Lecture 16: Process Management (Part 2)
Course 102: Lecture 16: Process Management (Part 2) Course 102: Lecture 16: Process Management (Part 2)
Course 102: Lecture 16: Process Management (Part 2)
Ahmed El-Arabawy
 
Anatomy of a Container: Namespaces, cgroups & Some Filesystem Magic - LinuxCon
Anatomy of a Container: Namespaces, cgroups & Some Filesystem Magic - LinuxConAnatomy of a Container: Namespaces, cgroups & Some Filesystem Magic - LinuxCon
Anatomy of a Container: Namespaces, cgroups & Some Filesystem Magic - LinuxCon
Jérôme Petazzoni
 
Linux Administration
Linux AdministrationLinux Administration
Linux Administration
Harish1983
 
Linux systems - Linux Commands and Shell Scripting
Linux systems - Linux Commands and Shell ScriptingLinux systems - Linux Commands and Shell Scripting
Linux systems - Linux Commands and Shell Scripting
Emertxe Information Technologies Pvt Ltd
 
FAT vs NTFS
FAT vs NTFSFAT vs NTFS
FAT vs NTFS
Arshad Qureshi
 
Course 102: Lecture 14: Users and Permissions
Course 102: Lecture 14: Users and PermissionsCourse 102: Lecture 14: Users and Permissions
Course 102: Lecture 14: Users and Permissions
Ahmed El-Arabawy
 
Understanding of linux kernel memory model
Understanding of linux kernel memory modelUnderstanding of linux kernel memory model
Understanding of linux kernel memory model
SeongJae Park
 
Sticky bit suid sgid
Sticky bit suid sgidSticky bit suid sgid
Sticky bit suid sgid
Madhavendra Dutt
 
Complete Guide for Linux shell programming
Complete Guide for Linux shell programmingComplete Guide for Linux shell programming
Complete Guide for Linux shell programming
sudhir singh yadav
 
Android Storage - Vold
Android Storage - VoldAndroid Storage - Vold
Android Storage - Vold
William Lee
 
Introduction to the linux command line.pdf
Introduction to the linux command line.pdfIntroduction to the linux command line.pdf
Introduction to the linux command line.pdf
CesleySCruz
 
Linux Kernel - Virtual File System
Linux Kernel - Virtual File SystemLinux Kernel - Virtual File System
Linux Kernel - Virtual File System
Adrian Huang
 
Users and groups in Linux
Users and groups in LinuxUsers and groups in Linux
Users and groups in Linux
Knoldus Inc.
 
Linux LVM Logical Volume Management
Linux LVM Logical Volume ManagementLinux LVM Logical Volume Management
Linux LVM Logical Volume Management
Manolis Kartsonakis
 
Course 102: Lecture 12: Basic Text Handling
Course 102: Lecture 12: Basic Text Handling Course 102: Lecture 12: Basic Text Handling
Course 102: Lecture 12: Basic Text Handling
Ahmed El-Arabawy
 
Vi editor
Vi editorVi editor
Vi editor
Er Mittinpreet Singh
 
Linux presentation
Linux presentationLinux presentation
Linux presentation
Nikhil Jain
 
Course 102: Lecture 28: Virtual FileSystems
Course 102: Lecture 28: Virtual FileSystems Course 102: Lecture 28: Virtual FileSystems
Course 102: Lecture 28: Virtual FileSystems
Ahmed El-Arabawy
 
Input output redirection linux
Input output redirection linuxInput output redirection linux
Input output redirection linux
Tanishq Soni
 
Linux basics
Linux basicsLinux basics
Linux basics
Santosh Khadsare
 
Linux kernel debugging
Linux kernel debuggingLinux kernel debugging
Linux kernel debugging
libfetion
 
Linux basic commands
Linux basic commandsLinux basic commands
Linux basic commands
Sagar Kumar
 
Embedded Systems: Lecture 11: Introduction to Git & GitHub (Part 2)
Embedded Systems: Lecture 11: Introduction to Git & GitHub (Part 2)Embedded Systems: Lecture 11: Introduction to Git & GitHub (Part 2)
Embedded Systems: Lecture 11: Introduction to Git & GitHub (Part 2)
Ahmed El-Arabawy
 
QSpiders - Unix Operating Systems and Commands
QSpiders - Unix Operating Systems and CommandsQSpiders - Unix Operating Systems and Commands
QSpiders - Unix Operating Systems and Commands
Qspiders - Software Testing Training Institute
 
UNIX/Linux training
UNIX/Linux trainingUNIX/Linux training
UNIX/Linux training
Michael Olafusi
 
Course 102: Lecture 20: Networking In Linux (Basic Concepts)
Course 102: Lecture 20: Networking In Linux (Basic Concepts) Course 102: Lecture 20: Networking In Linux (Basic Concepts)
Course 102: Lecture 20: Networking In Linux (Basic Concepts)
Ahmed El-Arabawy
 
Kafka at half the price with JBOD setup
Kafka at half the price with JBOD setupKafka at half the price with JBOD setup
Kafka at half the price with JBOD setup
Dong Lin
 
Linux and firewall
Linux and firewallLinux and firewall
Linux and firewall
Mhmud Khraibene
 
nftables - the evolution of Linux Firewall
nftables - the evolution of Linux Firewallnftables - the evolution of Linux Firewall
nftables - the evolution of Linux Firewall
Marian Marinov
 

More Related Content

What's hot

Complete Guide for Linux shell programming
Complete Guide for Linux shell programmingComplete Guide for Linux shell programming
Complete Guide for Linux shell programming
sudhir singh yadav
 
Linux presentation
Linux presentationLinux presentation
Linux presentation
Nikhil Jain
 

What's hot (20)

Sticky bit suid sgid
Sticky bit suid sgidSticky bit suid sgid
Sticky bit suid sgid
 
Complete Guide for Linux shell programming
Complete Guide for Linux shell programmingComplete Guide for Linux shell programming
Complete Guide for Linux shell programming
 
Android Storage - Vold
Android Storage - VoldAndroid Storage - Vold
Android Storage - Vold
 
Introduction to the linux command line.pdf
Introduction to the linux command line.pdfIntroduction to the linux command line.pdf
Introduction to the linux command line.pdf
 
Linux Kernel - Virtual File System
Linux Kernel - Virtual File SystemLinux Kernel - Virtual File System
Linux Kernel - Virtual File System
 
Users and groups in Linux
Users and groups in LinuxUsers and groups in Linux
Users and groups in Linux
 
Linux LVM Logical Volume Management
Linux LVM Logical Volume ManagementLinux LVM Logical Volume Management
Linux LVM Logical Volume Management
 
Course 102: Lecture 12: Basic Text Handling
Course 102: Lecture 12: Basic Text Handling Course 102: Lecture 12: Basic Text Handling
Course 102: Lecture 12: Basic Text Handling
 
Vi editor
Vi editorVi editor
Vi editor
 
Linux presentation
Linux presentationLinux presentation
Linux presentation
 
Course 102: Lecture 28: Virtual FileSystems
Course 102: Lecture 28: Virtual FileSystems Course 102: Lecture 28: Virtual FileSystems
Course 102: Lecture 28: Virtual FileSystems
 
Input output redirection linux
Input output redirection linuxInput output redirection linux
Input output redirection linux
 
Linux basics
Linux basicsLinux basics
Linux basics
 
Linux kernel debugging
Linux kernel debuggingLinux kernel debugging
Linux kernel debugging
 
Linux basic commands
Linux basic commandsLinux basic commands
Linux basic commands
 
Embedded Systems: Lecture 11: Introduction to Git & GitHub (Part 2)
Embedded Systems: Lecture 11: Introduction to Git & GitHub (Part 2)Embedded Systems: Lecture 11: Introduction to Git & GitHub (Part 2)
Embedded Systems: Lecture 11: Introduction to Git & GitHub (Part 2)
 
QSpiders - Unix Operating Systems and Commands
QSpiders - Unix Operating Systems and CommandsQSpiders - Unix Operating Systems and Commands
QSpiders - Unix Operating Systems and Commands
 
UNIX/Linux training
UNIX/Linux trainingUNIX/Linux training
UNIX/Linux training
 
Course 102: Lecture 20: Networking In Linux (Basic Concepts)
Course 102: Lecture 20: Networking In Linux (Basic Concepts) Course 102: Lecture 20: Networking In Linux (Basic Concepts)
Course 102: Lecture 20: Networking In Linux (Basic Concepts)
 
Kafka at half the price with JBOD setup
Kafka at half the price with JBOD setupKafka at half the price with JBOD setup
Kafka at half the price with JBOD setup
 

Viewers also liked

Basic security & info
Basic security & infoBasic security & info
Basic security & info
Tola LENG
 

Viewers also liked (11)

Linux and firewall
Linux and firewallLinux and firewall
Linux and firewall
 
nftables - the evolution of Linux Firewall
nftables - the evolution of Linux Firewallnftables - the evolution of Linux Firewall
nftables - the evolution of Linux Firewall
 
Iptables presentation
Iptables presentationIptables presentation
Iptables presentation
 
Clase4 (consola linux)
Clase4 (consola linux)Clase4 (consola linux)
Clase4 (consola linux)
 
Linux firewall and proxy server howto
Linux firewall and proxy server howtoLinux firewall and proxy server howto
Linux firewall and proxy server howto
 
Basics of firewall, ebtables, arptables and iptables
Basics of firewall, ebtables, arptables and iptablesBasics of firewall, ebtables, arptables and iptables
Basics of firewall, ebtables, arptables and iptables
 
Firewall Design and Implementation
Firewall Design and ImplementationFirewall Design and Implementation
Firewall Design and Implementation
 
Basic security & info
Basic security & infoBasic security & info
Basic security & info
 
The Perfect Linux Security Firewalls
The Perfect Linux Security Firewalls The Perfect Linux Security Firewalls
The Perfect Linux Security Firewalls
 
Fcsi601 Linux Firewall Nat
Fcsi601 Linux Firewall NatFcsi601 Linux Firewall Nat
Fcsi601 Linux Firewall Nat
 
Firewall
FirewallFirewall
Firewall
 

Similar to Firewall(linux)

How to secure ubuntu 12.04
How to secure ubuntu 12.04 How to secure ubuntu 12.04
How to secure ubuntu 12.04
John Richard
 
13 DHCP Configuration in Linux
13 DHCP Configuration in Linux13 DHCP Configuration in Linux
13 DHCP Configuration in Linux
Hameda Hurmat
 
Linux internet server security and configuration tutorial
Linux internet server security and configuration tutorialLinux internet server security and configuration tutorial
Linux internet server security and configuration tutorial
annik147
 
Setting up your multiengine environment Apache Railo ColdFusion
Setting up your multiengine environment Apache Railo ColdFusionSetting up your multiengine environment Apache Railo ColdFusion
Setting up your multiengine environment Apache Railo ColdFusion
ColdFusionConference
 
[Perforce] Swarm Workshop
[Perforce] Swarm Workshop[Perforce] Swarm Workshop
[Perforce] Swarm Workshop
Perforce
 
Dockerfish-Tutorial
Dockerfish-TutorialDockerfish-Tutorial
Dockerfish-Tutorial
Brian Hood
 

Similar to Firewall(linux) (20)

How to secure ubuntu 12.04
How to secure ubuntu 12.04 How to secure ubuntu 12.04
How to secure ubuntu 12.04
 
4. open mano set up and usage
4. open mano set up and usage4. open mano set up and usage
4. open mano set up and usage
 
Installing nagios core_from_source
Installing nagios core_from_sourceInstalling nagios core_from_source
Installing nagios core_from_source
 
Openstack Testbed_ovs_virtualbox_devstack_single node
Openstack Testbed_ovs_virtualbox_devstack_single nodeOpenstack Testbed_ovs_virtualbox_devstack_single node
Openstack Testbed_ovs_virtualbox_devstack_single node
 
OpenVPN as a WAN - pfSense Hangout October 2016
OpenVPN as a WAN - pfSense Hangout October 2016OpenVPN as a WAN - pfSense Hangout October 2016
OpenVPN as a WAN - pfSense Hangout October 2016
 
Your Inner Sysadmin - LonestarPHP 2015
Your Inner Sysadmin - LonestarPHP 2015Your Inner Sysadmin - LonestarPHP 2015
Your Inner Sysadmin - LonestarPHP 2015
 
Deployment of WebObjects applications on CentOS Linux
Deployment of WebObjects applications on CentOS LinuxDeployment of WebObjects applications on CentOS Linux
Deployment of WebObjects applications on CentOS Linux
 
13 DHCP Configuration in Linux
13 DHCP Configuration in Linux13 DHCP Configuration in Linux
13 DHCP Configuration in Linux
 
LAS16-211: Using LAVA V2 for advanced KVM testing
LAS16-211: Using LAVA V2 for advanced KVM testingLAS16-211: Using LAVA V2 for advanced KVM testing
LAS16-211: Using LAVA V2 for advanced KVM testing
 
Installing odoo v8 from github
Installing odoo v8 from githubInstalling odoo v8 from github
Installing odoo v8 from github
 
Linux internet server security and configuration tutorial
Linux internet server security and configuration tutorialLinux internet server security and configuration tutorial
Linux internet server security and configuration tutorial
 
IP Tables Primer - Part 1
IP Tables Primer - Part 1IP Tables Primer - Part 1
IP Tables Primer - Part 1
 
IPTables Primer - Part 1
IPTables Primer - Part 1IPTables Primer - Part 1
IPTables Primer - Part 1
 
Iptables in linux
Iptables in linuxIptables in linux
Iptables in linux
 
OSDC 2014: Nat Morris - Open Network Install Environment
OSDC 2014: Nat Morris - Open Network Install EnvironmentOSDC 2014: Nat Morris - Open Network Install Environment
OSDC 2014: Nat Morris - Open Network Install Environment
 
netLec5.pdf
netLec5.pdfnetLec5.pdf
netLec5.pdf
 
How to install and configure firewall on ubuntu os
How to install and configure firewall on ubuntu osHow to install and configure firewall on ubuntu os
How to install and configure firewall on ubuntu os
 
Setting up your multiengine environment Apache Railo ColdFusion
Setting up your multiengine environment Apache Railo ColdFusionSetting up your multiengine environment Apache Railo ColdFusion
Setting up your multiengine environment Apache Railo ColdFusion
 
[Perforce] Swarm Workshop
[Perforce] Swarm Workshop[Perforce] Swarm Workshop
[Perforce] Swarm Workshop
 
Dockerfish-Tutorial
Dockerfish-TutorialDockerfish-Tutorial
Dockerfish-Tutorial
 

More from Santosh Khadsare

More from Santosh Khadsare (20)

Cyber fraud (netflix)
Cyber fraud (netflix)Cyber fraud (netflix)
Cyber fraud (netflix)
 
INTERNET SECUIRTY TIPS
INTERNET SECUIRTY TIPSINTERNET SECUIRTY TIPS
INTERNET SECUIRTY TIPS
 
INDIAN NATIONAL CYBER SECURITY POLICY (NCSP-2013)
INDIAN NATIONAL CYBER SECURITY POLICY (NCSP-2013)INDIAN NATIONAL CYBER SECURITY POLICY (NCSP-2013)
INDIAN NATIONAL CYBER SECURITY POLICY (NCSP-2013)
 
Linux forensics
Linux forensicsLinux forensics
Linux forensics
 
Network forensics1
Network forensics1Network forensics1
Network forensics1
 
Windowsforensics
WindowsforensicsWindowsforensics
Windowsforensics
 
Lec 1 apln security(4pd)
Lec 1 apln security(4pd)Lec 1 apln security(4pd)
Lec 1 apln security(4pd)
 
Smart card
Smart cardSmart card
Smart card
 
Guassvirus
GuassvirusGuassvirus
Guassvirus
 
IDS and IPS
IDS and IPSIDS and IPS
IDS and IPS
 
Webmail
WebmailWebmail
Webmail
 
Linux Forensics
Linux ForensicsLinux Forensics
Linux Forensics
 
Web server
Web serverWeb server
Web server
 
Samba server
Samba serverSamba server
Samba server
 
Securitytips
SecuritytipsSecuritytips
Securitytips
 
Linuxfilesys
LinuxfilesysLinuxfilesys
Linuxfilesys
 
Linuxconcepts
LinuxconceptsLinuxconcepts
Linuxconcepts
 
Introtolinux
IntrotolinuxIntrotolinux
Introtolinux
 
New internet
New internetNew internet
New internet
 
Stuxnet flame
Stuxnet flameStuxnet flame
Stuxnet flame
 

Recently uploaded

Making communications land - Are they received and understood as intended? we...
Making communications land - Are they received and understood as intended? we...Making communications land - Are they received and understood as intended? we...
Making communications land - Are they received and understood as intended? we...
Association for Project Management
 
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in DelhiRussian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
kauryashika82
 

Recently uploaded (20)

General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...
 
This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.
 
Sociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning ExhibitSociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning Exhibit
 
How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17
 
Spatium Project Simulation student brief
Spatium Project Simulation student briefSpatium Project Simulation student brief
Spatium Project Simulation student brief
 
Key note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfKey note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdf
 
Understanding Accommodations and Modifications
Understanding Accommodations and ModificationsUnderstanding Accommodations and Modifications
Understanding Accommodations and Modifications
 
psychiatric nursing HISTORY COLLECTION .docx
psychiatric nursing HISTORY COLLECTION .docxpsychiatric nursing HISTORY COLLECTION .docx
psychiatric nursing HISTORY COLLECTION .docx
 
Mixin Classes in Odoo 17 How to Extend Models Using Mixin Classes
Mixin Classes in Odoo 17 How to Extend Models Using Mixin ClassesMixin Classes in Odoo 17 How to Extend Models Using Mixin Classes
Mixin Classes in Odoo 17 How to Extend Models Using Mixin Classes
 
Holdier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfHoldier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdf
 
ICT Role in 21st Century Education & its Challenges.pptx
ICT Role in 21st Century Education & its Challenges.pptxICT Role in 21st Century Education & its Challenges.pptx
ICT Role in 21st Century Education & its Challenges.pptx
 
Making communications land - Are they received and understood as intended? we...
Making communications land - Are they received and understood as intended? we...Making communications land - Are they received and understood as intended? we...
Making communications land - Are they received and understood as intended? we...
 
Dyslexia AI Workshop for Slideshare.pptx
Dyslexia AI Workshop for Slideshare.pptxDyslexia AI Workshop for Slideshare.pptx
Dyslexia AI Workshop for Slideshare.pptx
 
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdfUGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
 
Python Notes for mca i year students osmania university.docx
Python Notes for mca i year students osmania university.docxPython Notes for mca i year students osmania university.docx
Python Notes for mca i year students osmania university.docx
 
Asian American Pacific Islander Month DDSD 2024.pptx
Asian American Pacific Islander Month DDSD 2024.pptxAsian American Pacific Islander Month DDSD 2024.pptx
Asian American Pacific Islander Month DDSD 2024.pptx
 
On National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan FellowsOn National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan Fellows
 
Unit-IV; Professional Sales Representative (PSR).pptx
Unit-IV; Professional Sales Representative (PSR).pptxUnit-IV; Professional Sales Representative (PSR).pptx
Unit-IV; Professional Sales Representative (PSR).pptx
 
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in DelhiRussian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
 
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptxSKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
 

Firewall(linux)

  • 2. UFW NAME • ufw - program for managing a netfilter firewall DESCRIPTION • This program is for managing a Linux firewall and aims to provide an easy to use interface for the user.
  • 3. UFW • USAGE • ufw [--dry-run] enable|disable • ufw [--dry-run] default allow|deny • ufw [--dry-run] logging on|off • ufw [--dry-run] status • ufw [--dry-run] [delete] allow|deny PORT[/protocol] • ufw [--dry-run] [delete] allow|deny [proto protocol] [from ADDRESS [port PORT]] [to ADDRESS [port PORT]]
  • 4. UFW options • --version show program’s version number and exit • -h, --help show help message and exit • --dry-run don’t modify anything, just show the changes • enable reloads firewall and enables firewall on boot • disable unloads firewall and disables firewall on boot
  • 5. UFW options • default allow|deny change the default policy for incoming traffic. Note that existing rules will have to be migrated manually when changing the default policy. • logging on|off toggle logging • status show status of firewall and ufw managed rules • allow RULE allow RULE. See RULE SYNTAX • deny RULE deny RULE. See RULE SYNTAX • delete allow|deny RULE deletes the corresponding allow/deny RULE
  • 6. UBUNTU • To check status of inbuilt firewall $ sudo ufw status • To set default settings of firewall $ sudo ufw default allow or deny • To enable or disable firewall • $ sudo ufw enable or disable
  • 7. UBUNTU • To allow traffic from a particular ip (rules) $ sudo ufw allow from 192.168.1.111 • To allow specific ports( set rule) $ sudo ufw allow/deny (port no) (e.g 80) • To delete rule • $ sudo ufw delete allow/deny (port no) (e,g 80)
  • 8. UBUNTU • To allow traffic from a particular port of an ip (rules) $ sudo ufw allow from 192.168.1.111 to 80(port no)
  • 9. UFW Examples Allow port 53 • $ sudo ufw allow 53 • Delete Allow port 53 • $ sudo ufw delete allow 53 • Allow port 80 • $ sudo ufw allow 80/tcp • Delete Allow port 80 • $ sudo ufw delete allow 80/tcp • Allow port smtp • $ sudo ufw allow smtp • Delete Allow port smtp • $ sudo ufw delete allow smtp • Allow fro Particular IP • $ sudo ufw allow from 192.168.254.254 • Delete the above rule • $ sudo ufw delete allow from 192.168.254.254 •
  • 10. GUFW • Moreover, if you feel that the terminal way is a bit annoying, you can use the graphical way of the settings. But, you have to install another tiny package namingGUFW. $ sudo apt-get install gufw • Install .deb package using the following command $ sudo dpkg -i gufw_0.20.7-all.deb
  • 11. GUFW • Click to edit Master text styles – Second level • Third level – Fourth level » Fifth level
  • 12. GUFW • Using Gufw • If you want to open Gufw go to Applications--- >Internet--->Gufw Firewall Configuration
  • 13. GUFW • Once it opens you should see similar to the following screen here you need to click on checkbox next to firewall enabled
  • 14. GUFW • If you use allow all incoming traffic you should see similar to the following screen
  • 15. GUFW • If you select Deny incoming traffic with simple configuration screen
  • 16. GUFW • You can see some preconfigured ports options
  • 18. UFW • ufw is not intended to provide complete firewall functionality via its command interface, but instead provides an easy way to add or remove simple rules. It is currently mainly used for host-based firewalls. • Administrators can customize before.rules and after.rules as desired using the standard iptables-restore syntax. Rules are evaluated as follows: before.rules first, user.rules next, and after.rules last. • Please note that ufw status only shows rules added with ufw and not the rules found in the /etc/ufw rules files.
  • 19. UFW • ufw is a front-end for iptables-restore, with its rules saved in /etc/ufw/before.rules, /etc/ufw/ after.rules and /var/lib/ufw/user.rules. • ufw will read in /etc/ufw/sysctl.conf on boot when enabled. To change this behavior, modify /etc/default/ufw.
  • 20. • Click to edit Master text styles – Second level • Third level – Fourth level » Fifth level
  • 21. OTW • Third party firewalls for linux • NAT with Ubuntu’s ufw firewall • Fire starter - configuration • Iptables (in detial) ***Class by student officers ***