mirror of
https://github.com/ChrisTitusTech/linutil.git
synced 2024-11-22 05:12:27 +00:00
Fix ufw firewall script
This commit is contained in:
parent
6f865f76ef
commit
dc4e84172e
|
@ -1,5 +1,7 @@
|
||||||
#!/bin/sh -e
|
#!/bin/sh -e
|
||||||
|
|
||||||
|
. ./common-script.sh
|
||||||
|
|
||||||
installPkg() {
|
installPkg() {
|
||||||
echo "Install UFW if not already installed..."
|
echo "Install UFW if not already installed..."
|
||||||
if ! command_exists ufw; then
|
if ! command_exists ufw; then
|
||||||
|
@ -14,26 +16,33 @@ installPkg() {
|
||||||
else
|
else
|
||||||
echo "UFW is already installed."
|
echo "UFW is already installed."
|
||||||
fi
|
fi
|
||||||
|
}
|
||||||
|
|
||||||
|
configureUFW() {
|
||||||
echo -e "${GREEN}Using Chris Titus Recommended Firewall Rules${RC}"
|
echo -e "${GREEN}Using Chris Titus Recommended Firewall Rules${RC}"
|
||||||
sudo ufw limit 22/tcp
|
|
||||||
|
echo "Disabling UFW"
|
||||||
|
sudo ufw disable
|
||||||
|
|
||||||
echo "Limiting port 22/tcp (UFW)"
|
echo "Limiting port 22/tcp (UFW)"
|
||||||
|
sudo ufw limit 22/tcp
|
||||||
|
|
||||||
sudo ufw allow 80/tcp
|
|
||||||
echo "Allowing port 80/tcp (UFW)"
|
echo "Allowing port 80/tcp (UFW)"
|
||||||
|
sudo ufw allow 80/tcp
|
||||||
|
|
||||||
sudo ufw allow 443/tcp
|
|
||||||
echo "Allowing port 443/tcp (UFW)"
|
echo "Allowing port 443/tcp (UFW)"
|
||||||
|
sudo ufw allow 443/tcp
|
||||||
|
|
||||||
sudo ufw default deny incoming
|
|
||||||
echo "Denying Incoming Packets by Default(UFW)"
|
echo "Denying Incoming Packets by Default(UFW)"
|
||||||
|
sudo ufw default deny incoming
|
||||||
|
|
||||||
sudo ufw default allow outgoing
|
|
||||||
echo "Allowing Outcoming Packets by Default(UFW)"
|
echo "Allowing Outcoming Packets by Default(UFW)"
|
||||||
|
sudo ufw default allow outgoing
|
||||||
|
|
||||||
sudo ufw enable
|
|
||||||
echo -e "${GREEN}Enabled Firewall with Baselines!${RC}"
|
echo -e "${GREEN}Enabled Firewall with Baselines!${RC}"
|
||||||
|
sudo ufw enable
|
||||||
}
|
}
|
||||||
|
|
||||||
checkEnv
|
checkEnv
|
||||||
installPkg
|
installPkg
|
||||||
|
configureUFW
|
||||||
|
|
Loading…
Reference in New Issue
Block a user