UFW help on configuration
Tony Arnold
tony.arnold at manchester.ac.uk
Mon Aug 14 22:00:00 UTC 2017
Jay,
This page may help:
https://help.ubuntu.com/community/UFW
It seems the UFW syntax does not directly support ICMP protocol. The
above page shows how to deal with ICMP PING traffic, which I think you
could adapt for your purposes.
Regards,
Tony.
On Mon, 2017-08-14 at 16:21 -0500, Jay Ridgley wrote:
> Good Afternoon,
>
> I have used UFW (Uncomplicated Firewall) for a number of years and
> it
> has performed very well, for the most part just the default
> configuration is what I have been using.
>
> Now I need to add a three of rules and I do not know how to
> translate
> them from iptable notation to UFW notation. The rules folow (in
> iptable
> format):
>
> 1. ipchains -A input -p icmp --icmp-type address-mask-requests -j
> DROP
> 2. ipchains -A input -p icmp --icmp-tyoe timestamp-request -j DROP
> 3. ipchains -A output -p icmp --icmp-type timestamp-reply - j DROP
>
> I am not at all sure how to translate these into UFW notation. Help,
> please.
>
> The above entries have to do with compliance with PCI DSS. From an
> entity that will be processing credit card payments for a company I
> volunteer working with as treasurer.
>
> Current software in use is: 16.04.3 server
>
> Thanks,
> Jay
> --
> Jay Ridgley
> jridgley2 at austin.rr.com
> Registered Linux User ID - 9115
> https://linuxcounter.net/cert/9115.png
> Registered Ubuntu User ID - 23320
>
--
Tony Arnold MBCS, CITP | Senior IT Security Analyst | Directorate of IT Services | G64, Kilburn Building | The University of Manchester | Manchester M13 9PL | T: +44 161 275 6093 | M: +44 773 330 0039
More information about the ubuntu-users
mailing list