ufw firewall setup on arch linux

Watch ufw firewall setup on arch linux - IT techni on Dailymotion

Transcript

00:00hello friends in this video I thought of showing you how to set up UFW as a

00:07firewall on Arch Linux as well as giving examples of its basic usage

00:14installing this piece of software when done remotely through SSH for example

00:22may need to be done with precaution since it can cause you to be locked out

00:28of your system so please be careful and get yourself ready for such case to

00:36install this piece of software we simply run the command sudo pacman dash uppercase

00:41s ufw this way and then we press y and enter here all right we may need to run

00:53the command sudo ufw enable and every time we run any specific command related

01:00to this piece of software it may need to be run as root I don't think otherwise is

01:07possible only I always run it or I always forget to run it as root and it

01:14complains about it this command should enable this firewall we may need to

01:23enable its service by running this command this is not for enabling it's for

01:31starting this would enable it at every startup and to start it it should be like

01:42this and if you don't want to run the two commands and you want to simply make it

01:51one you can do it by running this command which should do both at once if you want

01:59to enable or allow a specific port you simply type sudo ufw allow for example the

02:07port or sometimes it's related service or protocol if we can say like this and if

02:16you want to deny it for example you can deny a specific port or a specific service if it's

02:25possible sometimes you specify a specific service like SSH like here and it complains

02:34that it cannot find it it may not be recognized by this firewall let's try for

02:44example with RDP I'm not sure yes so to deny RDP I believe it should be like this

02:52you need to know the port and if you want to know I'm purposely running this

02:59without sudo to prove that it will complain if you want to see all the allowed and denied

03:06ports you can run this command yes so let's run it as root and we can see the allowed and

03:14denied ports maybe we should yeah I said here allow SSH I thought of doing it again so allow SSH it's simply

03:26converted it into 22 let's say I want to deny VNC and we see the status and we can see that

03:37VNC is not converted somehow into its port I don't think there is anything wrong with it

03:43so that was it please subscribe like share and comment and peace