Graphical tools for firewall configuration

Simple

The Gufw program window is simple and therefore self-explanatory (Figure 9). The firewall is switched on and off by a slider, and, much like firewalld, the system works with profiles that contain different rulesets. This strategy proves to be particularly interesting for users who use Gufw on their laptops, because the device accesses different profiles depending on the type of Internet access.

Figure 9: The Gufw interface.

In the program window, you also use various functions in a table: The Rules tab lists the active rules; the Report tab shows details of the data transfer. The Log tab lists the function log of the firewall in a table and shows the usage history.

Modification

Profiles already exist that can be adapted or supplemented. To do so, click Edit | Preferences to bring up a dialog in which to create new profiles and modify the corresponding protocol function that individually defines the scope of the history (Figure 10). You can create the rules for the respective profiles in the Rules tab in the primary program window.

Figure 10: In Gufw, just a few steps define profiles.

A new rule is added by clicking the green plus symbol in the lower-left corner to open a new window. The application filter is immediately noticeable in the window; it predefines useful settings, especially for certain games that require special ports to be enabled for smooth operation. These ports are already stored on the firewall so that you can immediately adopt the appropriate rules.

However, I recommend that you create your own profiles for such applications. When many occur in a default profile, it is a guaranteed security risk, because the firewall keeps specific ports for incoming and outgoing data packets open at all times, even in regular operation.

Changing rules is easy, as well: Select the rule to be changed and left-click the button with the gear icon. In a new window, make all the necessary adjustments in a few selection and input fields. When finished, activate the new settings with Apply and close the window.

On Record

Gufw displays the firewall's history logs in the Log tab. You can save the logs for later documentation and testing purposes, even if only on the clipboard, by clicking on the Copy to Clipboard button located below the display area when the Log tab is active. Next, paste the log into an editor and save the file. Using the adjacent button, delete logs if necessary.

Buy this article as PDF

Express-Checkout as PDF
Price $2.95
(incl. VAT)

Buy Linux Magazine

SINGLE ISSUES
 
SUBSCRIPTIONS
 
TABLET & SMARTPHONE APPS
Get it on Google Play

US / Canada

Get it on Google Play

UK / Australia

Related content

  • Persistent iptables

    The Linux iptables packet filter lacks an easy way to load rules automatically after restarting a system, but you can automate this process several ways.

  • Firewalld and OpenSnitch

    For maximum security, you'd better watch traffic in both directions. This hands-on workshop takes you through the steps of setting up firewalls for outgoing as well as incoming traffic.

  • Firewalls Intro

    Firewalls are becoming evermore sophisticated. Luckily, the tools for managing firewalls are becoming simpler and more accessible for ordinary users

  • Shorewall

    When users think about their workstations at home, they often forget about security. But danger is out there,waiting to pounce on the unsuspecting. Shorewall helps everyday Linux users keep the intruders away.

  • KTools: KMyFirewall

    Linux has a fantastic selection of firewalls for securing stand-alone computers or whole networks. Although you can use IPTables to set up a firewall, the configuration is often the most difficult step. KMyFirewall offers a powerful, user-friendly, GUI-based approach.

comments powered by Disqus
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters

Support Our Work

Linux Magazine content is made possible with support from readers like you. Please consider contributing when you’ve found an article to be beneficial.

Learn More

News