Linux: How to block ping using UFW

phptuts June 2, 2022

Step 1: backup before.rules

cp /etc/ufw/before.rules /etc/ufw/before.rules_backup

Step 2: edit file /etc/ufw/before.rules

Change:

# ok icmp codes for INPUT
-A ufw-before-input -p icmp --icmp-type destination-unreachable -j ACCEPT
-A ufw-before-input -p icmp --icmp-type time-exceeded -j ACCEPT
-A ufw-before-input -p icmp --icmp-type parameter-problem -j ACCEPT
-A ufw-before-input -p icmp --icmp-type echo-request -j ACCEPT

change ACCEPT to DROP, we have:

# ok icmp codes for INPUT
-A ufw-before-input -p icmp --icmp-type destination-unreachable -j DROP
-A ufw-before-input -p icmp --icmp-type time-exceeded -j DROP
-A ufw-before-input -p icmp --icmp-type parameter-problem -j DROP
-A ufw-before-input -p icmp --icmp-type echo-request -j DROP

You can do this step by one command:

sed -i -E 's/(-A ufw-before-input -p icmp --icmp-type .* -j )ACCEPT/\1DROP/g' /etc/ufw/before.rules

Step 3: reload UFW service

sudo ufw reload

Free Online Tutorials

Linux: How to block ping using UFW

phptuts

Leave a Reply Cancel reply

Linux: How to block ping using UFW

phptuts

Related Posts

Libreoffice on Ubuntu: how to fix error: failed to read path from javaldx

Ubuntu: mount WebDAV with fuse and rclone

Ubuntu: how to fix error 404 Not Found for command apt install

Linux: how to fix error: E230001: Server SSL certificate verification failed: issuer is not trusted

Ubuntu error when build PHP with OpenSSL: expected ‘RSA *’ {aka ‘struct rsa_st *’} but argument is of type ‘const struct rsa_st *’

Leave a Reply Cancel reply

Ubuntu error when build PHP with OpenSSL: expected ‘RSA ’ {aka ‘struct rsa_st ’} but argument is of type ‘const struct rsa_st *’