X

How to Open a Port in UFW

Open a Port in UFW - UncomplicatedFirewall
Open a Port in UFW - UncomplicatedFirewall
Gufw
GUFW for Linux desktops

UncomplicatedFirewall (UFW) is a command-line, frontend iptables manager, similar to Firewalld and ConfigServer Security & Firewall (CSF). Understanding basic UFW commands is beneficial since it is available by default in all Ubuntu-based installations after 8.04, including Mint.

Those configuring UFW for a desktop system who prefer not to use the CLI can use the GUFW GUI application.

You must ensure the appropriate ports are open when installing new server management software such as Apache or Webmin.

Open a Port in UFW

There are multiple ways to open a port in UFW. Below, we cover how to open ports using the port number, service name, and custom IP/port combination.

  1. Log into SSH as root.
  2. Check if the application port is defined as a service (e.g. OpenVPN, PostgreSQL, IRC):
    cat /etc/services | grep service-name
    Or
    cat /etc/services | grep port
    To navigate the full list, use Page Up, Page Down, and arrow keys after using the less command:
    less /etc/services 
  3. If the service is listed, you can open the port using the service name (TCP/UDP protocol optional):
    sudo ufw allow servicename 

    sudo ufw allow servicename/tcp
  4. If there is no service listed for the port, you can open the port by specifying the port and protocol (TCP/UDP):
    sudo ufw allow 10000

    sudo ufw allow 1352/udp
  5. If you need to allow all connections from a specific system or network IP address:
    sudo ufw allow from 1.2.3.4
  6. To allow all connections from a particular subnet of IP:
    sudo ufw allow from 1.2.3.0/24
  7. To allow connections on a specific port from an IP address:
    sudo ufw allow from 1.2.3.4 to any port 22
  8. After you open a port in UFW, ensure UFW is enabled:
    sudo ufw enable

Close a Port in UFW

After you uninstall software, you should close any ports you no longer need to open on your system. You can accomplish this using the service name or port number.

  • To close a port in UFW using the service name:
    sudo ufw deny pop3
  • To close a port in UFW using the port number:
    sudo ufw deny 995

Check Open Ports in UFW

After making changes to any firewall, you should verify your changes to ensure they’re correct and active.

  1. To check whether UFW is running:
    sudo ufw status 
  2. To check whether UFW is running with additional information, such as logging and profile status:
    sudo ufw status verbose
  3. To find the rule number for UFW rules:
    sudo ufw status numbered
  4. Then you can remove the rule:
    sudo ufw delete 1

Want to learn more about web server security? Check out our guide on hardening your managed VPS or dedicated server.

Upgrade to VPS Hosting for Peak Performance

Upgrade to InMotion VPS Hosting today for top-notch performance, security, and flexibility, and save up to $2,412 – a faster, stronger hosting solution is just a click away!

check markSSD Storage check markHigh-Availability check markIronclad Security check markPremium Support

VPS Hosting

InMotion Hosting Contributor
InMotion Hosting Contributor Content Writer

InMotion Hosting contributors are highly knowledgeable individuals who create relevant content on new trends and troubleshooting techniques to help you achieve your online goals!

More Articles by InMotion Hosting

Was this article helpful? Join the conversation!