Last update: March 17, 2019. This website uses cookies. By using our website, you acknowledge that you have read, understood and agreed to our Privacy Policy, Cookie Policy, Terms of Service, and E-Sign Consent. More information

 Actions

Host Firewall Basics


Introduction[edit]

It is recommended to use a simple host firewall and deny any incoming connections on all ports. For a Linux host OS like Debian, Ubuntu and Arch Linux, gufw provides a simple graphical user interface for the Uncomplicated Firewall program. [1] It is easy to perform common tasks like blocking or allowing P2P, individual, or pre-configured ports.

How-to: Install and Configure a Firewall[edit]

The following steps install gufw on a Debian host.

1. Install gufw.

sudo apt-get update && sudo apt-get install gufw

2. Start gufw.

gufw

3. Press Unlock. Enter the password.

4. Press Enabled. [2]

5. Check the settings.

By default, the settings should be Incoming: Deny and Outgoing: Allow.

Although not recommended, users can add special firewall rules, use pre-configured options for common programs and services, or set other advanced options in gufw by following this guide.

For further information on firewalls, see here.

References[edit]

  1. Uncomplicated Firewall by itself only provides a command-line interface for managing the netfilter firewall. Iptables are used by the program for configuration.
  2. The firewall is disabled by default.

License[edit]

Whonix Host Firewall Basics wiki page Copyright (C) Amnesia <amnesia at boum dot org>
Whonix Host Firewall Basics wiki page Copyright (C) 2012 - 2018 ENCRYPTED SUPPORT LP <adrelanos@riseup.net>

This program comes with ABSOLUTELY NO WARRANTY; for details see the wiki source code.
This is free software, and you are welcome to redistribute it under certain conditions; see the wiki source code for details.


No user support in comments. See Support.

Comments will be deleted after some time. Specifically after comments have been addressed in form of wiki enhancements. See Wiki Comments Policy.


Add your comment
Whonix welcomes all comments. If you do not want to be anonymous, register or log in. It is free.



https | (forcing) onion

Share: Twitter | Facebook

This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! Read, understand and agree to Conditions for Contributions to Whonix, then Edit! Edits are held for moderation.

Copyright (C) 2012 - 2019 ENCRYPTED SUPPORT LP. Whonix is a trademark. Whonix is a licensee of the Open Invention Network. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Freedom Software license as Whonix itself. (Why?)

By using our website, you acknowledge that you have read, understood and agreed to our Privacy Policy, Cookie Policy, Terms of Service, and E-Sign Consent. Whonix is provided by ENCRYPTED SUPPORT LP. See Imprint.