I have read the basic instructions here:
https://help.ubuntu.com/community/UFW
I want to sudo ufw default deny and then
sudo ufw allow ssh
sudo ufw allow smtp
sudo ufw allow www
sudo ufw allow https
sudo ufw allow imaps
to allow the services I need, am I missing anything ? I assume allowing ssh will also allow scp ? (heck I will allow sftp as well anyway).
However my problem is I am connecting remotely, so the only way I can do what I want is to actually do a sudo ufw default allow then use a list of the services provided by less /etc/services and deny each service individually? This seems a pain as if I turn on the firewall with default deny it will boot me out of my ssh connection?
The easiest solution is to find your current IP, and first do the following:
Where 192.168.1.100 would be your current IP. This way you don't block yourself out from the machine.
This is an old question, but still valid, and the answers given aren't exactly complete, so for those stumbling across this...
The best way to use ufw is to close everything first, then re-open ports one by one as needed. The OP was correct in that you must be careful if you're doing this over SSH (although his solution is backwards): you don't want to lock yourself out, so execute these commands before enabling ufw. As an example:
In summary, set the rules first, including allowing SSH, before enabling them.