Today I Learned

hashrocket A Hashrocket project

Uncomplicated Fire Wall

Lets say you have a malicious program on your server submitting http posts over and over over. What’s important is shutting down those requests before the server provider shuts them down for you. An uncomplicated way to do that is with ucf uncomplicated fire wall.

First enable ssh so that you don’t lock yourself out.

ufw allow ssh

Then deny all other outgoing traffic

ufw default deny outgoing

Check out the rules with status

ufw status

And then enable the fire wall.

ufw enable 

If you’ve ever dealt with iptables, this might seem a little less…. complicated.