Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
X
X
xutegino2017-09-18 15:57:56
linux
xutegino, 2017-09-18 15:57:56

How to set up UFW on a server where I only use OpenVPN?

I have an Ubuntu 16.04 server. I have an OpenVPN server running on it.
I want to configure UFW to disallow everything except OpenVPN (well, SSH).
At first I just turned it on and could not connect via VPN. Therefore, I added the VPN port to the exceptions.
I completed sudo ufw allow 1194
My status:

Status: active

To                         Action      From
--                         ------      ----
OpenSSH                    ALLOW       Anywhere                  
1194                       ALLOW       Anywhere                  
OpenSSH (v6)               ALLOW       Anywhere (v6)             
1194 (v6)                  ALLOW       Anywhere (v6)

Pages in the browser still do not open. I thought maybe I should also add port 80. I added it sudo ufw allow 80
. The pages still don't open.
What ports need to be opened, how to configure everything? So that I can freely use the Internet with VPN and do not worry that something is not working or someone will get into the server.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
Anton Kuzmichev, 2017-09-18
@xutegino

Look at the OpenVPN setup here
. You most likely have the reason that you need to allow the udp protocol:
I have the following ufw ports open on my VPS with OpenVPN:

$ sudo ufw status
Status: active

To                         Action      From
--                         ------      ----
OpenSSH                    ALLOW       Anywhere                  
443/tcp                    ALLOW       Anywhere                  
443/udp                    ALLOW       Anywhere                  
XXX22/tcp                  ALLOW       Anywhere                  
XXX22/udp                  ALLOW       Anywhere                  
1194/udp                   ALLOW       Anywhere                  
OpenSSH (v6)               ALLOW       Anywhere (v6)             
443/tcp (v6)               ALLOW       Anywhere (v6)             
443/udp (v6)               ALLOW       Anywhere (v6)             
XXX22/tcp (v6)             ALLOW       Anywhere (v6)             
XXX22/udp (v6)             ALLOW       Anywhere (v6)             
1194/udp (v6)              ALLOW       Anywhere (v6)

But in addition to ports, there is another point with ufw (with the file /etc/ufw/before.rules), which is described in the article by reference.

Similar questions
B
Bliss022021-05-03 18:53:48
How to remove selection from margin? 2Reply
A
Alexander2017-06-23 20:13:44
Accepting cookies. Why is it returning an array? 2Reply
M
maniac_by2019-03-19 14:36:35
How to bind multiple URLs to the same server and open different links? 3Reply
C
cloud_mix2019-03-19 16:55:56
What is the process for installing an OS using SSH for a server in another DC? 4Reply
J
Jay Marlow2016-10-21 01:41:36
How to fix Windows application startup error on Ubuntu? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question