Ubuntu
ufw package

UFW not allowing GEOIP rule

Bug #1419249 reported by THCTLO
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
ufw (Debian)
Fix Released
Unknown
ufw (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

Hai,

Ufw is not allowing my GEOIP country block rule.

I tried to add these rules. ( which work fine when added with iptables )

-A ufw-before-logging-input -m geoip --src-cc KR,CN,VN,UA,BR,VE,JP -m limit --limit 3/minute -j LOG --log-level 5 --log-prefix '[UFW BLOCK COUNTRIES] '
-A ufw-before-logging-input -m geoip --src-cc KR,CN,VN,UA,BR,VE,JP -j DROP

i get the message UFW INIT error.

if i manualy add these rules with iptables they work fine, but these rules dissapeer after a while, how come ?

and yes, even if i add these rule to ufw-before-input the same happens.
I cant figure this out so im reporting this as a bug.

At least how can i make it so that it stops removing (somehow) my geoip rules.. i really need them for security reasons.

Im running ubuntu 14.04 LTS

TLo

Tags: geoip
Jamie Strandboge (jdstrand)
information type: Private Security → Public
Revision history for this message
Jamie Strandboge (jdstrand) wrote :

Thank you for using Ubuntu and filing a bug. Curiously, a Debian bug came in just before this one that is essentially the same. Please see my comment in https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777150 and report back if that helps you.

Changed in ufw (Ubuntu):
status: New → Incomplete
Bug Watch Updater (bug-watch-updater)
Changed in ufw (Debian):
status: Unknown → New
Bug Watch Updater (bug-watch-updater)
Changed in ufw (Debian):
status: New → Fix Released
Jamie Strandboge (jdstrand)
Changed in ufw (Ubuntu):
status: Incomplete → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.