Skip to content

ufw - Uncomplicated Firewall

I used ufw for the frist time today to block some IP addresses that kept posting spam messages to my blog or attacking SSH with known usernames.

It’s a simple interface to the powerful iptables package and really easy to use.  I installed on Ubuntu Server using:

apt-get install ufw

Deny everything by default:

ufw default deny

Block the offending IP addresses:

ufw deny from 194.8.74.0/23
ufw deny from 94.229.65.173
ufw deny from 69.162.73.178
ufw deny from 218.237.55.219
ufw deny from 211.192.64.203
ufw deny from 218.249.60.87
ufw deny from 64.183.108.76

Let my services through:

ufw allow http
ufw allow ssh
ufw allow smtp
ufw allow imap

Enable ufw:

ufw enable

Bingo! No more spam.  No more username attacks in my auth.log.

Posted in Techy. Tagged with , , , .

By guy
February 12, 2009

0 Responses

Stay in touch with the conversation, subscribe to the RSS feed for comments on this post.

Some HTML is OK

(required)

(required, but never shared)

or, reply to this post via trackback.