depois que eu remover a seguinte regra:
% bl0ck_qu0te% ufw inicia o netfilter.
Estou usando Ubuntu 14.04.3 LTS
root@alexus:~# ufw status verbose
Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), deny (routed)
New profiles: skip
To Action From
-- ------ ----
22/tcp ALLOW IN Anywhere
2376/tcp ALLOW IN Anywhere
22/tcp (v6) ALLOW IN Anywhere (v6)
2376/tcp (v6) ALLOW IN Anywhere (v6)
root@alexus:~#
Eu usei a seguinte regra para permitir a comunicação de um IP específico para a porta 9150:
root@alexus:~# ufw allow proto tcp from Y.Y.Y.Y to any port 9150
Rule added
root@alexus:~#
no entanto, a partir de um host remoto, posso conectar-me à porta 9150:
[alexus@wcmisdlin02 Desktop]$ nmap -v X.X.X.X -p 9150 -P0
Starting Nmap 6.40 ( http://nmap.org ) at 2015-09-28 10:45 EDT
Initiating Parallel DNS resolution of 1 host. at 10:45
Completed Parallel DNS resolution of 1 host. at 10:45, 0.10s elapsed
Initiating Connect Scan at 10:45
Scanning X.X.X.X [1 port]
Discovered open port 9150/tcp on X.X.X.X
Completed Connect Scan at 10:45, 0.11s elapsed (1 total ports)
Nmap scan report for X.X.X.X
Host is up (0.11s latency).
PORT STATE SERVICE
9150/tcp open unknown
Read data files from: /usr/bin/../share/nmap
Nmap done: 1 IP address (1 host up) scanned in 0.23 seconds
[alexus@wcmisdlin02 Desktop]$
Como eu configuro o ufw para permitir a conexão à porta 9150 somente de um endereço IP específico e não de outros?
* UPDATE *
root@alexus:~# ufw status verbose
Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), deny (routed)
New profiles: skip
To Action From
-- ------ ----
22/tcp ALLOW IN Anywhere
2376/tcp ALLOW IN Anywhere
9150/tcp ALLOW IN Y.Y.Y.Y
9150/tcp DENY IN Anywhere
22/tcp (v6) ALLOW IN Anywhere (v6)
2376/tcp (v6) ALLOW IN Anywhere (v6)
9150/tcp (v6) DENY IN Anywhere (v6)
root@alexus:~#
depois que eu remover a seguinte regra:
% bl0ck_qu0te% ufw inicia o netfilter.