linutil/src/commands/security/firewall-baselines.sh

#!/bin/sh -e

. ./common-script.sh

installPkg() {
    echo "Install UFW if not already installed..."
    if ! command_exists ufw; then
        case ${PACKAGER} in
            pacman)
                sudo "${PACKAGER}" -S --noconfirm ufw
                ;;
            *)
                sudo "${PACKAGER}" install -y ufw
                ;;
        esac
    else
        echo "UFW is already installed."
    fi
}

configureUFW() {
    echo -e "${GREEN}Using Chris Titus Recommended Firewall Rules${RC}"

    echo "Disabling UFW"
    sudo ufw disable

    echo "Limiting port 22/tcp (UFW)"
    sudo ufw limit 22/tcp

    echo "Allowing port 80/tcp (UFW)"
    sudo ufw allow 80/tcp

    echo "Allowing port 443/tcp (UFW)"
    sudo ufw allow 443/tcp

    echo "Denying Incoming Packets by Default(UFW)"
    sudo ufw default deny incoming

    echo "Allowing Outcoming Packets by Default(UFW)"
    sudo ufw default allow outgoing

    echo -e "${GREEN}Enabled Firewall with Baselines!${RC}"
    sudo ufw enable
}

checkEnv
installPkg
configureUFW
Added Security Folder 2024-07-30 20:01:13 +01:00			`#!/bin/sh -e`

Fix ufw firewall script 2024-08-02 15:19:20 +01:00			`. ./common-script.sh`

Added Security Folder 2024-07-30 20:01:13 +01:00			`installPkg() {`
			`echo "Install UFW if not already installed..."`
			`if ! command_exists ufw; then`
			`case ${PACKAGER} in`
			`pacman)`
			`sudo "${PACKAGER}" -S --noconfirm ufw`
			`;;`
			`*)`
			`sudo "${PACKAGER}" install -y ufw`
			`;;`
			`esac`
			`else`
			`echo "UFW is already installed."`
			`fi`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00			`}`

			`configureUFW() {`
Added Security Folder 2024-07-30 20:01:13 +01:00			`echo -e "${GREEN}Using Chris Titus Recommended Firewall Rules${RC}"`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00
			`echo "Disabling UFW"`
			`sudo ufw disable`

Added Security Folder 2024-07-30 20:01:13 +01:00			`echo "Limiting port 22/tcp (UFW)"`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00			`sudo ufw limit 22/tcp`
Added Security Folder 2024-07-30 20:01:13 +01:00
			`echo "Allowing port 80/tcp (UFW)"`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00			`sudo ufw allow 80/tcp`
Added Security Folder 2024-07-30 20:01:13 +01:00
			`echo "Allowing port 443/tcp (UFW)"`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00			`sudo ufw allow 443/tcp`
Added Security Folder 2024-07-30 20:01:13 +01:00
			`echo "Denying Incoming Packets by Default(UFW)"`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00			`sudo ufw default deny incoming`
Added Security Folder 2024-07-30 20:01:13 +01:00
			`echo "Allowing Outcoming Packets by Default(UFW)"`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00			`sudo ufw default allow outgoing`
Added Security Folder 2024-07-30 20:01:13 +01:00
			`echo -e "${GREEN}Enabled Firewall with Baselines!${RC}"`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00			`sudo ufw enable`
Added Security Folder 2024-07-30 20:01:13 +01:00			`}`

			`checkEnv`
			`installPkg`
Fix ufw firewall script 2024-08-02 15:19:20 +01:00			`configureUFW`