Enabling A Firewall Is Easy In Linux

The Fedora Firewalld docs are for the command line, UGH! It is for IT professionals in an enterprise situation. It is horrible for an average home desktop novice user. A home desktop firewall should have a basic screen and an advanced screen- the basic one should have an on/off switch and an EASY way to whitelist/ un-whitelist an application.

I was getting errors about missing kernel modules. The problem was that I had updated the kernel without restarting, so the solution was...turn the machine off and back on again.

Good tutorial Sir . But I still search tutorial how to make router and internet connection sharing especially in arch Linux .
In other distro such ubuntu /debian base, I successfully setting and configuration it.

"I suprise most linux user doesn't care much about firewall"

Say the man who always use the secure and complicated password

I had only one app on the list which was CUPS. I had to manually download extra UFW applications profiles. Now I get these errors.

WARN: "Invalid ports in profile 'NTP'"
WARN: "Invalid ports in profile 'OSSEC'"
WARN: Skipping 'README.md': couldn't process
WARN: "Invalid ports in profile 'SIP'"
WARN: "Invalid ports in profile 'SNMP'"
WARN: Duplicate profile 'Socks', using last found
WARN: Duplicate profile 'WWW', using last found
WARN: Duplicate profile 'WWW Secure', using last found
WARN: Duplicate profile 'WWW Cache', using last found
WARN: "Invalid ports in profile 'DHCP6'"
WARN: Skipping 'distcc': also in /etc/services
WARN: Skipping 'spamd': also in /etc/services
WARN: Skipping 'syslog': also in /etc/services
WARN: Skipping 'whois': also in /etc/services
WARN: Skipping 'wsdd': couldn't process

Being from a Cisco environment and configuring ACLs, this wasn't hard to pickup. But i would like to thank you for the video, this really helped bring things (mostly syntax) together.

God i wish you could have contextual help (?) in Linux like in IOS/JUNOS.

A little clarification: `ufw app list` doesn't list only installed app configs (for me it's only preinstalled ones and Syncthing), it lists all apps that ever include ufw configs in their packages

ewe eff dub yuh

Great video Men thank u .

Great video, great channel

offtopic, but how do you make the autocpmlete show preview/suggestion

Thanks DT. However, what I still don't understand is the difference between ENABLE UFW and START UFW. Also, apart from UFW which other firewall is available on Linux?

It's super cool that such utility as UFW exists. I remember I was also confused by IPTables. I know that basic configuration is not that complicated, but UFW syntax makes it more human friendly.

I've install ufw and configured it for gtk-transmission. It works very well. As the app is using different ports (you never know which ones), adding the app being treated by ufw lets you downloading without having to shutdown ufw.

UFW is very easy to use, but you admitted yourself that most users don't even enable it because they don't know about it, wouldn't it be easier to explain GUFW for this userbase? If they don't know about a firewall, surely they will struggle with command line?

Linux nftables now , not ufw

Is firewalls effective against malware/spywares? Let's say there's a malware in my linux and it's spying on my keyboard with keylogger and spying on the files etc, if I turn on the firewall the malware wont be able to operate anymore because the malware needs connection permission to send data in and out and the firewall don't allow unless I allow it.. right?

Thanks DT. Made me realize I indeed always had a firewall on in Windoze but not in Linux. Since I am on a shared network here installed and configured it straight away ;-)

What would make sense would be having a dialog walking you through setting the firewall up when you install the system if you want to do it. If you're installing a server you shouldn't need that of course, you're going to do it manually or with a script you already have built to make it easy. The real deal though is that there are many linux users lately who are just escaping windows and have no interest in what happens under the hood, and their home router is probably protecting them pretty well already. I bet a bucket of Captain Spaulding's fried chicken against your next paycheck that 90% of windows users never touch the windows firewall.