特殊:Badtitle/NS100:Gufw:修订间差异
小 创建新页面为 '{{From|https://help.ubuntu.com/community/Gufw}} {{Languages|UbuntuHelp:Gufw}} == Introduction == https://help.ubuntu.com/community/IconsPage?action=AttachFile&do=get&target=gufw...' |
小无编辑摘要 |
||
第20行: | 第20行: | ||
=== Adding Rules === | === Adding Rules === | ||
To configure the firewall, we add rules. Simply click the '''Add''' button and a new window will pop up. For details about this implementation, see the [[UbuntuHelp:UFW|UFW]] page. Rules can be configured for TCP and UDP ports, and UFW has some preconfigured programs/services to make setting up rules for them easy. | To configure the firewall, we add rules. Simply click the '''Add''' button and a new window will pop up. For details about this implementation, see the [[UbuntuHelp:UFW|UFW]] page. Rules can be configured for TCP and UDP ports, and UFW has some preconfigured programs/services to make setting up rules for them easy. | ||
The available options for rules are ''Allow'', ''Deny'', ''Reject'', and ''Limit''. | The available options for rules are ''Allow'', ''Deny'', ''Reject'', and ''Limit'': | ||
* Allow: The system will allow entry traffic for a port. | |||
* Deny: The system will deny entry traffic to a port. | |||
* Reject: The system will deny entry traffic to a port and will inform the requesting for connection system that it has been rejected. | |||
* Limit: The system will deny connections if an IP address has attempted to initiate 6 or more connections in the last 30 seconds. | |||
==== Preconfigured ==== | ==== Preconfigured ==== | ||
The '''Preconfigured''' tab gives us some options for controlling firewall options for common programs and services. | The '''Preconfigured''' tab gives us some options for controlling firewall options for common programs and services. |
2010年5月19日 (三) 22:33的最新版本
文章出处: |
{{#if: | {{{2}}} | https://help.ubuntu.com/community/Gufw }} |
点击翻译: |
English {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/af | • {{#if: UbuntuHelp:Gufw|Afrikaans| [[::Gufw/af|Afrikaans]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/ar | • {{#if: UbuntuHelp:Gufw|العربية| [[::Gufw/ar|العربية]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/az | • {{#if: UbuntuHelp:Gufw|azərbaycanca| [[::Gufw/az|azərbaycanca]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/bcc | • {{#if: UbuntuHelp:Gufw|جهلسری بلوچی| [[::Gufw/bcc|جهلسری بلوچی]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/bg | • {{#if: UbuntuHelp:Gufw|български| [[::Gufw/bg|български]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/br | • {{#if: UbuntuHelp:Gufw|brezhoneg| [[::Gufw/br|brezhoneg]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/ca | • {{#if: UbuntuHelp:Gufw|català| [[::Gufw/ca|català]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/cs | • {{#if: UbuntuHelp:Gufw|čeština| [[::Gufw/cs|čeština]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/de | • {{#if: UbuntuHelp:Gufw|Deutsch| [[::Gufw/de|Deutsch]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/el | • {{#if: UbuntuHelp:Gufw|Ελληνικά| [[::Gufw/el|Ελληνικά]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/es | • {{#if: UbuntuHelp:Gufw|español| [[::Gufw/es|español]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/fa | • {{#if: UbuntuHelp:Gufw|فارسی| [[::Gufw/fa|فارسی]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/fi | • {{#if: UbuntuHelp:Gufw|suomi| [[::Gufw/fi|suomi]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/fr | • {{#if: UbuntuHelp:Gufw|français| [[::Gufw/fr|français]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/gu | • {{#if: UbuntuHelp:Gufw|ગુજરાતી| [[::Gufw/gu|ગુજરાતી]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/he | • {{#if: UbuntuHelp:Gufw|עברית| [[::Gufw/he|עברית]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/hu | • {{#if: UbuntuHelp:Gufw|magyar| [[::Gufw/hu|magyar]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/id | • {{#if: UbuntuHelp:Gufw|Bahasa Indonesia| [[::Gufw/id|Bahasa Indonesia]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/it | • {{#if: UbuntuHelp:Gufw|italiano| [[::Gufw/it|italiano]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/ja | • {{#if: UbuntuHelp:Gufw|日本語| [[::Gufw/ja|日本語]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/ko | • {{#if: UbuntuHelp:Gufw|한국어| [[::Gufw/ko|한국어]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/ksh | • {{#if: UbuntuHelp:Gufw|Ripoarisch| [[::Gufw/ksh|Ripoarisch]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/mr | • {{#if: UbuntuHelp:Gufw|मराठी| [[::Gufw/mr|मराठी]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/ms | • {{#if: UbuntuHelp:Gufw|Bahasa Melayu| [[::Gufw/ms|Bahasa Melayu]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/nl | • {{#if: UbuntuHelp:Gufw|Nederlands| [[::Gufw/nl|Nederlands]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/no | • {{#if: UbuntuHelp:Gufw|norsk| [[::Gufw/no|norsk]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/oc | • {{#if: UbuntuHelp:Gufw|occitan| [[::Gufw/oc|occitan]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/pl | • {{#if: UbuntuHelp:Gufw|polski| [[::Gufw/pl|polski]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/pt | • {{#if: UbuntuHelp:Gufw|português| [[::Gufw/pt|português]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/ro | • {{#if: UbuntuHelp:Gufw|română| [[::Gufw/ro|română]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/ru | • {{#if: UbuntuHelp:Gufw|русский| [[::Gufw/ru|русский]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/si | • {{#if: UbuntuHelp:Gufw|සිංහල| [[::Gufw/si|සිංහල]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/sq | • {{#if: UbuntuHelp:Gufw|shqip| [[::Gufw/sq|shqip]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/sr | • {{#if: UbuntuHelp:Gufw|српски / srpski| [[::Gufw/sr|српски / srpski]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/sv | • {{#if: UbuntuHelp:Gufw|svenska| [[::Gufw/sv|svenska]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/th | • {{#if: UbuntuHelp:Gufw|ไทย| [[::Gufw/th|ไทย]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/tr | • {{#if: UbuntuHelp:Gufw|Türkçe| [[::Gufw/tr|Türkçe]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/vi | • {{#if: UbuntuHelp:Gufw|Tiếng Việt| [[::Gufw/vi|Tiếng Việt]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/yue | • {{#if: UbuntuHelp:Gufw|粵語| [[::Gufw/yue|粵語]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/zh | • {{#if: UbuntuHelp:Gufw|中文| [[::Gufw/zh|中文]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/zh-hans | • {{#if: UbuntuHelp:Gufw|中文(简体)| [[::Gufw/zh-hans|中文(简体)]]}}|}} {{#ifexist: {{#if: UbuntuHelp:Gufw | UbuntuHelp:Gufw | {{#if: | :}}Gufw}}/zh-hant | • {{#if: UbuntuHelp:Gufw|中文(繁體)| [[::Gufw/zh-hant|中文(繁體)]]}}|}} |
{{#ifeq:UbuntuHelp:Gufw|:Gufw|请不要直接编辑翻译本页,本页将定期与来源同步。}} |
{{#ifexist: :Gufw/zh | | {{#ifexist: Gufw/zh | | {{#ifeq: {{#titleparts:Gufw|1|-1|}} | zh | | }} }} }} {{#ifeq: {{#titleparts:Gufw|1|-1|}} | zh | | }}
Introduction
Gufw is a graphical frontend to UFW (Uncomplicated Firewall). For an overview of firewalls, please see Firewall.
Installation
In order to install Gufw, you must have the Universe repository enabled. To install, use Synaptic, or run from Terminal:
sudo apt-get install gufw
Usage
This documentation explains how to use Gufw in Ubuntu 9.10 Karmic Koala, which is still under development. The concepts are backwards compatible with stable Ubuntu versions, though the screenshots may vary a bit. |
To access GUFW, go to System->Administration->Firewall configuration. By default, the firewall is disabled.
Enabling
To enable the firewall, simply check the Enabled box and the default for traffic will be set to Deny.
Adding Rules
To configure the firewall, we add rules. Simply click the Add button and a new window will pop up. For details about this implementation, see the UFW page. Rules can be configured for TCP and UDP ports, and UFW has some preconfigured programs/services to make setting up rules for them easy. The available options for rules are Allow, Deny, Reject, and Limit:
- Allow: The system will allow entry traffic for a port.
- Deny: The system will deny entry traffic to a port.
- Reject: The system will deny entry traffic to a port and will inform the requesting for connection system that it has been rejected.
- Limit: The system will deny connections if an IP address has attempted to initiate 6 or more connections in the last 30 seconds.
Preconfigured
The Preconfigured tab gives us some options for controlling firewall options for common programs and services. A prime example is given on the UFW page, which is allowing and denying the ssh service, which uses port 22. If you select "Allow", "Service", "ssh", then the firewall will be configured to allow SSH traffic.
Simple
Not all program configurations are available in Gufw, but we can still add rules for them using the Simple tab. Again, we'll use the SSH example - let's just pretend for a moment that there isn't a preconfigured option for it. To enable it in the Simple tab, select "Allow", "TCP", "22" and click Add.
Advanced
Sometimes we want to configure access based on specific IPs or IP ranges, so we use the Advanced tab. Back to the SSH example, let's say we only want to enable access for users on the local LAN, using IPs 192.168.1.100 - 192.168.1.150. Your options would be "Allow", "TCP", From: "192.168.1.100"/"22", To: "192.168.1.150"/"22".
Preferences
There are only a couple of preferences available to set in Gufw, and can be controlled from Edit->Preferences Here you can control logging for ufw and for Gufw. The default is to enable logging for ufw, and disable logging for Gufw.
Other Resources
- Firewall
- UFW
- UbuntuWiki:UbuntuFirewall - UFW homepage
- [1] - Gufw homepage