How to block specific IP range in ufw?

ufw 14.04 firewall
13,206

Tho things to consider: I usually use deny, not reject. I'm not sure if reject is valid, so it should be:

sudo ufw deny from 216.21.13.0/24 to any port 80

Also, if you have other rule for port 80, they may be running before this one. Try looking at

sudo ufw status numbered

And you should see an output like this:

[ 1] Anywhere                   DENY IN     x.x.x.x            
[ 2] Anywhere                   DENY IN     x.x.x.x               
[ 3] 80                         ALLOW IN    Anywhere                  
[ 4] 443                        ALLOW IN    Anywhere                  
[ 5] 22                         ALLOW IN    x.x.x.x              
[ 6] 80 (v6)                    ALLOW IN    Anywhere (v6)                      
[ 7] 443 (v6)                   ALLOW IN    Anywhere (v6)

If your rule is after the allow all port 80 traffic, then it won't ever be called because the rule above it allows all port 80 traffic.

Try putting the rule in with

sudo ufw insert 1 deny from 216.21.13.0/24 to any port 80

And it will put it at the top of the list.

Share:
13,206

Related videos on Youtube

mario
Author by

mario

Updated on September 18, 2022

Comments

  • mario
    mario over 1 year

    I open terminal and type 

    sudo ufw reject from 216.21.13.0/24 to any port 80

    But when I pick a random IP such as 216.21.13.15 I noticed it is still pingable and reachable. Why does this happen?

    • Sukhjinder Singh
      Sukhjinder Singh over 7 years
      try to check status sudo ufw status
    • mario
      mario over 7 years
      Status is active
  • cryptic0
    cryptic0 about 4 years
    What does the 0/24 do here? Does the range go from 216.21.13.0 through 216.21.13.24? I am trying to block an IP address that ends in 199.
  • Kevin
    Kevin almost 4 years
    The 0/24 is IP address slash notation. In this case, you are specifying that 24 of the 32 bits for the IP address are defined. That's a fancy way of saying that it covers the range 216.21.13.0-216.21.13.255. You can specify a single IP address if that's what you're trying to do with the command sudo ufw insert 1 deny from 216.21.13.199 to any port 80. More on IP address slash notation can be found here: ripe.net/about-us/press-centre/understanding-ip-addressing

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

ERROR: problem running ufw-init
Uncomplicated Firewall (UFW) is not blocking anything when using Docker
UFW as an active service on Ubuntu
UFW BLOCK syslog - tcp/ip is blocked and this is allowed in UFW - GPS TRACKING/TCP/UDP report server
UFW 'default deny incoming' doesn't work
Problem with ufw enable: libkmod: ERROR ../libkmod/libkmod.c
UFW rules disappear after manually adding them to user.rules ubuntu 16.04
ufw firewall deny outgoing but allow browser
How to configure UFW for a basic desktop / laptop?
Allow only a specific ip address to an open port