I have to open up a group of ports.

Adding the single ports to (g)ufw was easy enough but I can't work out how to open the range 11200-11299.

How do I do that?

5 Answers

You can specify port ranges to ufw (the command-line one), using : (colon) to separate the lowest and the highest port in the range. For example:

ufw allow 11200:11299/tcp

Note that the protocol part (/tcp or /udp) is mandatory with port ranges.

This works at least since Ubuntu 10.04.

2

Either

ufw allow 11200:11299/tcp
ufw allow 11200:11299/udp

or if you need to use a from source ip range you must use full syntax

ufw allow from to any port 11200:11299 proto tcp
ufw allow from to any port 11200:11299 proto udp

see:

1

Its worth adding that if you want to restrict to a specific IP address which is allowed access to those ports you can use the following:

ufw allow proto tcp from 1.2.3.4 to any port 40000:40100

I believe you can specify the range in the last tab of new rule, tick the checkbox at the bottom of the window to add more options (just to be safe). The range can be specified as 1000:1010 to open ports 1000-1010.

2

The cleanest command line way I've seen is a little script like this:

for i in `seq 11200 11299`; do ufw allow $i
done

2

Your Answer

Sign up or log in

Sign up using Google Sign up using Facebook Sign up using Email and Password Submit

Post as a guest

Post Your Answer Discard

By clicking “Post Your Answer”, you agree to our terms of service, privacy policy and cookie policy