Re: UFW/GFW Doesn't start up after running previously

To: debian-user@lists.debian.org
Subject: Re: UFW/GFW Doesn't start up after running previously
From: Richmond <dnomhcir@gmx.com>
Date: Sun, 19 Nov 2023 16:06:22 +0000
Message-id: <[🔎] 838r6tpw1t.fsf@example.com>
References: <[🔎] ZVi7NpISAUE25XjC@debian02.localdomain> <[🔎] 20231118074932.4ef70c16@jhegaala.localdomain> <[🔎] ZVjUp4x9eSS8YgYn@debian02.localdomain>

marathon <marathon.durandal@gmail.com> writes:

> On Sat, Nov 18, 2023 at 07:49:32AM -0700, Charles Curley wrote:
>> On Sat, 18 Nov 2023 08:25:10 -0500
>> marathon <marathon.durandal@gmail.com> wrote:
>> 
>> > Using Debian Bookworm, on Lenovo X280 laptop. Each time after cold
>> > startup or from suspend, I've found the ufw software is turned off
>> > and blocks all network activity in that state.
>> 
>> How do you know it is turned off? Please show the exact command you are
>> using, including leading and trailing command line prompts.
>
> When I launch Gufw it's off. I'm not starting it via console but with the 
> GUI. This is a vanilla Debian install, and ufw/Gufw from the Debian repos.  
> It should just work. I have no idea whats going on under the hood, I'm a 
> simple user of the product.
>
>> ufw is a tool for setting up and managing a firewall. It is not the
>> firewall itself. To find out if your firewall is active, run
>> 
>> iptables -n -L
>> 
>> If you see this, you have no firewall at all, you are wide open, and
>> should run some ifw command to bring the firewall up:
>
> It works fine when its turned on manually, past experience using it on 
> Debian this would never happen. Once installed and started it should keep on 
> running across cold reboots and/or suspend.
>
>> root@chaffee:~# iptables -n -L
>
> snip
>
>> If you see anything else, you may have a working firewall. As I don't
>
> It's called ufw not ifw. I have it set on the default settings which stops 
> inbound but allows outbound. I need input from someone using this tool. It's 
> available in the repos for those that don't want to screw around with 
> scripts etc.

I am using it on a Debian 10 system. You might look in ufw.conf

cat /etc/ufw/ufw.conf

# /etc/ufw/ufw.conf
#

# Set to yes to start on boot. If setting this remotely, be sure to add a rule
# to allow your remote connection before starting ufw. Eg: 'ufw allow 22/tcp'
ENABLED=yes

# Please use the 'ufw' command to set the loglevel. Eg: 'ufw logging medium'.
# See 'man ufw' for details.
LOGLEVEL=low


When I run

ufw status
Status: active

To                         Action      From
--                         ------      ----
22/tcp                     ALLOW       192.168.1.0/24

systemctl status ufw
● ufw.service - Uncomplicated firewall
   Loaded: loaded (/lib/systemd/system/ufw.service; enabled; vendor preset: enabled)
   Active: active (exited) since Sun 2023-11-19 15:45:15 GMT; 20min ago
     Docs: man:ufw(8)
  Process: 219 ExecStart=/lib/ufw/ufw-init start quiet (code=exited, status=0/SUCCESS)
 Main PID: 219 (code=exited, status=0/SUCCESS)

Reply to:

References:
- UFW/GFW Doesn't start up after running previously
  - From: marathon <marathon.durandal@gmail.com>
- Re: UFW/GFW Doesn't start up after running previously
  - From: Charles Curley <charlescurley@charlescurley.com>
- Re: UFW/GFW Doesn't start up after running previously
  - From: marathon <marathon.durandal@gmail.com>

Prev by Date: Re: IMAP vs POP was Thunderbird vs Claws Mail
Next by Date: Re: IMAP vs POP was Thunderbird vs Claws Mail
Previous by thread: Re: UFW/GFW Doesn't start up after running previously
Next by thread: Re: UFW/GFW Doesn't start up after running previously
Index(es):
- Date
- Thread