Firewall config

Tags
firewall, gufw, ip range

 
Thread Tools Search this Thread
# 1  
Old 12-27-2017
Firewall config

I'm having a bit of a problem with a firewall configuration. I'm using GUFW.


When I launch firefox and it goes to my home page (DuckDuckGo), the browser makes several connections. For example, the output of "ss -prtu":
Code:
tcp    ESTAB      0      0        10.8.8.22:32774   ec2-176-34-131-233.eu-west-1.compute.amazonaws.com:https  users:(("firefox",pid=6371,fd=146))

tcp   ESTAB      0       0        10.8.8.22:52114   ec2-54-229-110-205.eu-west-1.compute.amazonaws.com:https  users:(("firefox",pid=6371,fd=98))

As an experiment, I want to block both incoming and outgoing connections in the range 10.8.0.0/16. I added rules to GUFW and the logs reflect this:

Code:
[12/27/2017 03:37:33 AM] Editing rule (Adding): myrule | /usr/sbin/ufw deny out from any to 10.8.0.0/16 > Rule added

[12/27/2017 03:37:06 AM] Editing rule (Adding): myrule | /usr/sbin/ufw deny in from 10.8.0.0/16 to any > Rule added

I exited Firefox, then restarted firefox and it went to it's home page as normal. In a terminal, I typed ss -prtu and my firewall commands apparently failed because this comes up:

Code:
tcp   ESTAB      0      0                                   10.8.8.22:39908                ec2-176-34-135-167.eu-west-1.compute.amazonaws.com:https                 users:(("firefox",pid=9687,fd=101))

tcp   ESTAB      0      0                                   10.8.8.22:42292                a88-221-134-48.deploy.akamaitechnologies.com:http                  users:(("firefox",pid=9687,fd=6))

tcp   ESTAB      0      0                                   10.8.8.22:46624                ec2-52-72-108-51.compute-1.amazonaws.com:https                 users:(("firefox",pid=9687,fd=94))

tcp   ESTAB      0      0                                   10.8.8.22:46626                ec2-52-72-108-51.compute-1.amazonaws.com:https                 users:(("firefox",pid=9687,fd=95))

Any idea what I'm doing wrong?

.

Last edited by benc; 12-28-2017 at 09:05 AM.. Reason: code tags

|
Thread Tools Search this Thread
Search this Thread:
Advanced Search

More UNIX and Linux Forum Topics You Might Find Helpful
(VS 2008) New build config looking files from other folder build config SA_Palani Windows & DOS: Issues & Discussions 1 01-20-2017 05:43 PM
Apache virtual host config vs global config problem freebird8z Red Hat 1 04-05-2013 11:33 AM
Firewall andrevicente Security 4 03-05-2012 04:50 AM
Firewall? hadimotamedi Linux 6 07-27-2011 10:59 AM
Firewall jgt SuSE 4 06-19-2011 10:17 AM
unix firewall kool UNIX for Dummies Questions & Answers 4 02-11-2011 09:56 AM
Shell script that will compare two config files and produce 2 outputs 1)actual config file 2)report muraliinfy04 Shell Programming and Scripting 4 11-04-2010 08:30 AM
Firewall sumathi.k AIX 3 08-24-2010 12:05 PM
parsing config file to create new config files clazzic Shell Programming and Scripting 1 12-27-2009 03:06 PM
help with firewall xecutioner Security 2 08-26-2009 11:32 AM
settings in rc.firewall reality BSD 1 07-17-2008 12:31 PM
Ftp to firewall vtran4270 Linux 0 01-30-2004 08:20 PM
Looking Out from Behind a Firewall mntamago Security 4 07-17-2003 09:39 AM
What Firewall do you use? tarballed Security 5 08-08-2002 01:17 AM