Actions

Host Firewall Basics

From Whonix


Firewall-34227640.png

Introduction[edit]

It is recommended to use a simple host firewall and deny any incoming connections on all ports. For a Linux host OS like Debian, Ubuntu and Arch Linux, gufw [archive] provides a simple graphical user interface for the Uncomplicated Firewall [archive] program. [1] It is easy to perform common tasks like blocking or allowing P2P, individual, or pre-configured ports.

How-to: Install and Configure a Firewall[edit]

The following steps install gufw on a Debian host [archive].

1. Install gufw.

sudo apt-get update && sudo apt-get install gufw

2. Start gufw.

gufw

3. Press Unlock. Enter the password.

4. Press Enabled. [2]

5. Check the settings.

By default, the settings should be Incoming: Deny and Outgoing: Allow.

Although not recommended, it is possible to add special firewall rules, use pre-configured options for common programs and services, or set other advanced options in gufw by following this guide [archive].

For further information on firewalls, see here.

References[edit]

  1. Uncomplicated Firewall by itself only provides a command-line interface for managing the netfilter firewall. Iptables [archive] are used by the program for configuration.
  2. The firewall is disabled by default.


Fosshost is sponsors Kicksecure ™ stage server Whonix old logo.png
Fosshost About Advertisements

Search engines: YaCy | Qwant | ecosia | MetaGer | peekier | Whonix ™ Wiki


Follow: 1024px-Telegram 2019 Logo.svg.png Iconfinder Apple Mail 2697658.png Twitter.png Facebook.png Rss.png Reddit.jpg 200px-Mastodon Logotype (Simple).svg.png

Support: Discourse logo.png

Donate: Donate Bank Wire Paypal Bitcoin accepted here Monero accepted here Contriute

Whonix donate bitcoin.png Monero donate Whonix.png United Federation of Planets 1000px.png

Twitter-share-button.png Facebook-share-button.png Telegram-share.png link=mailto:?subject=Host Firewall Basics&body=https://www.whonix.org/wiki/Host_Firewall_Basics link=https://reddit.com/submit?url=https://www.whonix.org/wiki/Host_Firewall_Basics&title=Host Firewall Basics link=https://news.ycombinator.com/submitlink?u=https://www.whonix.org/wiki/Host_Firewall_Basics&t=Host Firewall Basics link=https://mastodon.technology/share?message=Host Firewall Basics%20https://www.whonix.org/wiki/Host_Firewall_Basics&t=Host Firewall Basics

Iconfinder Apple Mail 2697658.png Subscribe to Whonix ™ Newsletter.

https link onion link Priority Support | Investors | Professional Support

Whonix | © ENCRYPTED SUPPORT LP | Heckert gnu.big.png Freedom Software / Osi standard logo 0.png Open Source (Why?)

The personal opinions of moderators or contributors to the Whonix ™ project do not represent the project as a whole.

By using our website, you acknowledge that you have read, understood and agreed to our Privacy Policy, Cookie Policy, Terms of Service, and E-Sign Consent.