How do I use ufw to open ports on ipv4 only?

Question

Whenever I run a command like ufw allow 22, ufw automatically adds the firewall rules to both ipv4 and ipv6. If I want to only open a port on ipv4, is there a way to do so? Something like ufw allow 22 proto ipv4.

Kontrollfreak · Accepted Answer · 2020-09-24T14:54:21.397

32

You just have to use the fuller syntax and specify an address (range).

For example, allow connections to TCP port 22 on all IPv4 addresses:

ufw allow proto tcp to 0.0.0.0/0 port 22

edited Sep 24 '20 at 14:54

answered Mar 26 '17 at 16:42

Kontrollfreak

486

james-see · Answer 2 · 2023-08-18T21:54:55.630

27

I would edit the ufw config file itself to turn off IPv6:

sudo nano /etc/default/ufw

Change the line that says: IPV6=yes to IPV6=no then restart the ufw service. You can even run sudo ufw reload if the ufw instance is already enabled.

This worked for me to ensure that all the rules I add are only added to IPv4.

Thanks

edited Aug 18 '23 at 21:54

answered Feb 03 '19 at 20:37

james-see

377

score 4 · Answer 3 · edited Apr 22 '24 at 18:29

4

Maybe only by subnet:

sudo ufw allow proto tcp from 192.168.0.0/24 to any port 22

More info: https://ubuntu.com/server/docs/firewalls

edited Apr 22 '24 at 18:29

StudioLE

103

answered Oct 18 '16 at 02:26

Chico3001

253

How do I use ufw to open ports on ipv4 only?

3 Answers3