Extensions to the "Add Rule" forms
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Gufw |
Fix Released
|
Undecided
|
Unassigned | ||
Bug Description
This are two whishes for some usefull gui extensions of the "Firewall: Add Rule" of Gufw.
When adding a rule under tab "Preconfigured" in "Firewall: Add Rule", it would be nice to be able to add a IP (like 192.168.1.1 or 2000::1) or a net (like 192.168.1.0/24 or 2000::0/64) for which the Service or Program should apply.
It would also be great if Service or Program could also be selected as the port part of the tab "Advanced".
As it is now, one can only allow/deny for instance Samba access to none or the whole world, not only to the local net or a singel host or range of hosts. To do that, you have to use ufw.
It would also be nice if the From:- and To:-fields of addresses in "Advanced" (and address field in "Simple") could do IP or Network lookup (like from /etc/hosts and /etc/networks or where /etc/nsswitch.conf say). But this should prob. also be added to ufw.
Both whishes, Service/Program on nets/hosts and IP/Network look up, is getting more important as we get more use of IPv6. Remember a long IPv6 host/network address is not that convinient for those who prob. are targeted for this program.
Anyway, thanks for a good program.
| Changed in gui-ufw: | |
| status: | New → Opinion |
| status: | Opinion → Triaged |
| Greg W. (mttbrnsmls) wrote | #1 |
| costales (costales) wrote | #2 |
| Changed in gui-ufw: | |
| status: | Triaged → Fix Released |
I'd also like to have the ability to specify what Program can use an Allowed port. Way it is now: if I open a port, ANY program can use that port. This should not be.