查看更多有关Ubuntu操作系统服务器搭建.信息
查看防火墙状态
ufw status verbose
或者ufw status
root@itaso:~# ufw status verbose
Status: inactive //状态:不活跃
root@itaso:~#
root@itaso:~# ufw status
Status: active //状态:活跃,并且目前该防火墙没有对外开放端口,开发状态请看下面的 防火墙开放指定端口
root@itaso:~#
查看端口IP
netstat -ltn
root@itaso:~# netstat -ltn
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 127.0.0.53:53 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN
root@itaso:~#
查看防火墙版本
root@itaso:~# ufw version
ufw 0.36
Copyright 2008-2015 Canonical Ltd.
root@itaso:~#
启用防火墙
ufw enable
启动防火墙 / ufw reload
重启防火墙
root@itaso:~# ufw enable
Command may disrupt existing ssh connections. Proceed with operation (y|n)? y
Firewall is active and enabled on system startup
root@itaso:~#
root@itaso:~# ufw status verbose
Status: active //状态:活跃
Logging: on (low)
Default: deny (incoming), allow (outgoing), disabled (routed)
New profiles: skip
root@itaso:~#
关闭防火墙
ufw disable
防火墙在系统启动时就自动关闭
root@itaso:~# ufw disable
Firewall stopped and disabled on system startup
root@itaso:~# ufw status verbose
Status: inactive
root@itaso:~#
防火墙开放指定端口
ufw allow 8081
以防火墙开放8081
端口为例
root@itaso:~# ufw allow 8081
Rule added
Rule added (v6)
root@itaso:~# ufw status
Status: active
To Action From
-- ------ ----
8081 ALLOW Anywhere
8081 (v6) ALLOW Anywhere (v6)
root@itaso:~#
防火墙禁用指定端口
ufw delete allow 8081
以防火墙禁用8081
端口为例
root@itaso:~# ufw delete allow 8081
Rule deleted
Rule deleted (v6)
root@itaso:~#