Ubuntu
ufw package

  1. Bug #194844
  2. Comment #13

Comment 13 for bug 194844

Revision history for this message
yell0w (yellowbloc+ubuntulaunchpad) wrote : Re: ufw complains when ipv6 is blacklisted

confirmed not working on a Xen vps where ipv6's not supported.

The strange thing is, everything seem to work right, ufw status showing it allowing/denying the ports it should allow/deny.

However, when i do "ufw default deny" everything networkwise is gone (can't ping, dig, wget, apt-get, etc... ) wherewas "ufw default allow" makes everything work like normal.

I don't know whether the ipv6 issue causes this, but here's why I think it might:
# /etc/init.d/ufw force-reload
 * Stopping firewall: ufw...
FATAL: Could not load /lib/modules/2.6.18-53.1.6.el5.028stab053.6/modules.dep: No such file or directory
ip6tables v1.3.8: can't initialize ip6tables table `filter': iptables who? (do you need to insmod?)
Perhaps ip6tables or your kernel needs to be upgraded.
---------------------------------------------------------------------------------------

lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 8.04.1
Release: 8.04
Codename: hardy

------------------------------------------------

ufw --version
ufw 0.16.2.1
-----------------------------------------------
iptables -L -n:
--------------------------------------------
Chain INPUT (policy DROP)
target prot opt source destination
ufw-before-input all -- 0.0.0.0/0 0.0.0.0/0
ufw-after-input all -- 0.0.0.0/0 0.0.0.0/0

Chain FORWARD (policy DROP)
target prot opt source destination
ufw-before-forward all -- 0.0.0.0/0 0.0.0.0/0
ufw-after-forward all -- 0.0.0.0/0 0.0.0.0/0

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ufw-before-output all -- 0.0.0.0/0 0.0.0.0/0
ufw-after-output all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-after-forward (1 references)
target prot opt source destination
RETURN all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-after-input (1 references)
target prot opt source destination
RETURN all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-after-output (1 references)
target prot opt source destination
RETURN all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-before-forward (1 references)
target prot opt source destination
ufw-user-forward all -- 0.0.0.0/0 0.0.0.0/0
RETURN all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-before-input (1 references)
target prot opt source destination
ufw-user-input all -- 0.0.0.0/0 0.0.0.0/0
RETURN all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-before-output (1 references)
target prot opt source destination
ufw-user-output all -- 0.0.0.0/0 0.0.0.0/0
RETURN all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-not-local (0 references)
target prot opt source destination

Chain ufw-user-forward (1 references)
target prot opt source destination
RETURN all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-user-input (1 references)
target prot opt source destination
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:80
RETURN all -- 0.0.0.0/0 0.0.0.0/0

Chain ufw-user-output (1 references)
target prot opt source destination
RETURN all -- 0.0.0.0/0 0.0.0.0/0