Results 1 to 1 of 1

Thread: UFW &linux-igd &Chain FORWARD (policy ACCEPT)

  1. #1
    Join Date
    Sep 2012
    Beans
    2

    UFW &linux-igd &Chain FORWARD (policy ACCEPT)

    [FOUND SOLUTION]
    /etc/default/ufw
    Code:
    DEFAULT_FORWARD_POLICY="ACCEPT"

    Good day,

    I have UFW configured as follows
    Code:
    $ sudo ufw status verbose 
    Status: active
    Logging: on (low)
    Default: deny (incoming), allow (outgoing)
    New profiles: skip
    
    To                         Action      From
    --                         ------      ----
    Anywhere                   ALLOW IN    10.0.0.0/24
    65432/tcp                  ALLOW IN    Anywhere
    65432/udp                  ALLOW IN    Anywhere
    65432/tcp                  ALLOW IN    Anywhere (v6)
    65432/udp                  ALLOW IN    Anywhere (v6)
    I would like Chain FORWARD to ACCEPT, as these are the ports opened by linux-igd for UPnP services on the network.
    Examples listed bellow.

    My gratitude to anybody who may assist, thank you.

    UFW Disabled
    Code:
    $ sudo iptables -L FORWARD
    Chain FORWARD (policy ACCEPT)
    target     prot opt source               destination         
    ACCEPT     udp  --  anywhere             10.0.0.100           udp dpt:55914
    ACCEPT     tcp  --  anywhere             10.0.0.100           tcp dpt:55914
    ACCEPT     tcp  --  anywhere             10.0.0.103           tcp dpt:54117
    ACCEPT     udp  --  anywhere             10.0.0.103           udp dpt:54117
    ufw-before-logging-forward  all  --  anywhere             anywhere            
    ufw-before-forward  all  --  anywhere             anywhere            
    ufw-after-forward  all  --  anywhere             anywhere            
    ufw-after-logging-forward  all  --  anywhere             anywhere            
    ufw-reject-forward  all  --  anywhere             anywhere            
    ACCEPT     all  --  10.0.0.0/8           anywhere             ctstate NEW
    ACCEPT     all  --  anywhere             anywhere             ctstate RELATED,ESTABLISHED
    UFW Enabled
    Code:
    $ sudo iptables -L FORWARD
    Chain FORWARD (policy DROP)
    target     prot opt source               destination         
    ACCEPT     udp  --  anywhere             10.0.0.100           udp dpt:55914
    ACCEPT     tcp  --  anywhere             10.0.0.100           tcp dpt:55914
    ACCEPT     tcp  --  anywhere             10.0.0.103           tcp dpt:54117
    ACCEPT     udp  --  anywhere             10.0.0.103           udp dpt:54117
    ufw-before-logging-forward  all  --  anywhere             anywhere            
    ufw-before-forward  all  --  anywhere             anywhere            
    ufw-after-forward  all  --  anywhere             anywhere            
    ufw-after-logging-forward  all  --  anywhere             anywhere            
    ufw-reject-forward  all  --  anywhere             anywhere            
    ACCEPT     all  --  10.0.0.0/8           anywhere             ctstate NEW
    ACCEPT     all  --  anywhere             anywhere             ctstate RELATED,ESTABLISHED
    Last edited by CalvinZA; September 6th, 2012 at 12:09 AM. Reason: Found solution,

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •