29

I'm doing a hardware refresh on a my Colo, I just need to copy my UFW rules from my old server to my new server. I dont seem to be able to get them copy all the active rules from my old server to my new one.

How do I copy my active UFW rules between servers?

Halis
  • 217
  • 1
  • 9
Squidly
  • 1,685
  • 1
  • 14
  • 18
  • 1
    I found it in /lib/ufw/user.rules and /lib/ufw/user6.rules. I copy that between server, deactivate and reactive ufw and the rules applied. – Squidly Oct 02 '11 at 02:18
  • 1
    Squidly you can answer and accept your own answer to your question. It may help others who run into a similar problem as they may skip this question if they see it has 0 replies and doesn't have an accepted answer. – 3dinfluence Oct 02 '11 at 02:30

4 Answers4

33

I found the rules in /etc/ufw/user.rules and for ipv6 you can find the rules in /etc/ufw/user6.rules.

If you copy those files between the servers, disable and then re-enable ufw.

Nayef
  • 103
  • 3
Squidly
  • 1,685
  • 1
  • 14
  • 18
10

User configurations for UFW should be in /etc/ufw. You are not supposed to modify files in /lib nor /usr/lib nor any other similar locations, because your modifications might get overwritten by the vendor's default version after the packages upgraded.

From Ubuntu 16.04:

ls /etc/ufw

after6.rules applications.d before.rules user6.rules
after.init before6.rules sysctl.conf user.rules
after.rules before.init ufw.conf

Meow
  • 281
  • 3
  • 4
1

Those /lib/ufw/user.rules /lib/ufw/user6.rules are just symlinks to /etc/ufw/user...

Copy those files from and to /etc/ufw directory

1

Another solution could be:

Save current config with:

iptables-save >/to/some/filename

Then restore it with:

iptables-restore </to/some/filename

Mike
  • 11
  • 1