Return to Revisions

3 of 5

added 12 characters in body

edited Feb 17, 2022 at 20:36

Why ufw blocks the access when rules specifically allowing it exist?

$ufw status numbered
Status: active

 To                         Action      From
 --                         ------      ----
[ 7] Anywhere                   ALLOW IN    192.168.0.0/16             # allow all from LAN
[ 8] Anywhere                   ALLOW IN    192.168.1.148              # allow all from Samsung TV
[10] Anywhere on enp1s0         ALLOW IN    Anywhere                   # allow all from LAN (enp1s0)

Why ufw blocks 192.168.1.31 access from 192.168.1.148? all above ufw rules should facilitate that access but why they don't?

$ufwl | grep '192.168'
... [UFW BLOCK] IN=enp1s0 OUT= MAC=68:05:ca:24:83:6c:00:12:fb:74:36:26:08:00 SRC=192.168.1.148 DST=192.168.1.31 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=52235 DPT=25930 WINDOW=0 RES=0x00 RST URGP=0 MARK=0x1

$lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description:    Ubuntu 21.10
Release:        21.10
Codename:       impish

ufw

asked Feb 17, 2022 at 12:13

Adrian