vespino
Reputation: 1940
ufw deny rule seems to be ignored
I have UFW setup as my firewall and a script that reads my log file to detect spammers (it's a mailserver). The script insert rules like these on the first line:
Anywhere DENY x.x.x.x
The script is running fine, rules are added. You would say everything is working fine, but there are still logs coming from IPs that should be blocked.
I have tried reloading UFW, but this does not solve this issue. These are basically my rules:
- Anywhere DENY x.x.x.x
- 25/tcp ALLOW Anywhere
- 443/tcp ALLOW Anywhere
I assume the firewall stops when the rule is valid?
Upvotes: 0
Views: 642
Answers (1)
Flow
Reputation: 29
Yes, once a rule is matched the others will not be evaluated.
You can check the order of your rules and that ufw is active with:
sudo ufw status numbered
Upvotes: 0
Related Questions
- nginx simple deny rule not enforced
- UFW firewall is not working on Ubuntu in DigitalOcean
- UFW to allow traffic from Docker
- Unable to block application in ubuntu 20.x using dynamic udp/tcp ports
- UFW blocks most ports until disabled and re-enabled after reboot
- Can't allow port in docker ubuntu container
- Docker ports visible on interface even if UFW has denied access
- port not opening even after adding rule in ufw?
- ufw firewall DROP icmp from ALL to a specific IP address on my server
- Problems occur when I block a specific user to access Internet using iptables while ufw is enable