Skip to content

Instantly share code, notes, and snippets.

@james-see

james-see/ufw-rules.sh

Last active November 3, 2022 17:48
Show Gist options
  • Save james-see/95dae74dd8943596d1c8f8e873bc18c3 to your computer and use it in GitHub Desktop.
Save james-see/95dae74dd8943596d1c8f8e873bc18c3 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
ufw-rules.sh
#!/bin/bash
# vars
VPNIP=127.0.0.1
# base
sudo ufw default deny outgoing
sudo ufw default deny incoming
sudo ufw allow ssh
sudo ufw reload
# github
sudo ufw allow to 185.199.108.0/22
sudo ufw allow to 140.82.112.0/20
sudo ufw allow to 143.55.64.0/20
sudo ufw allow to 2a0a:a440::/29
sudo ufw allow to 2606:50c0::/32
sudo ufw allow to 192.30.252.0/22
sudo ufw allow to 20.201.28.152/32
sudo ufw allow to 20.205.243.160/32
sudo ufw allow to 102.133.202.246/32
sudo ufw allow to 20.248.137.50/32
sudo ufw allow to 20.207.73.83/32
sudo ufw allow to 20.27.177.118/32
sudo ufw allow to 20.200.245.248/32
sudo ufw allow to 20.233.54.52/32
sudo ufw allow from 185.199.108.0/22
sudo ufw allow from 140.82.112.0/20
sudo ufw allow from 143.55.64.0/20
sudo ufw allow from 2a0a:a440::/29
sudo ufw allow from 2606:50c0::/32
sudo ufw allow from 192.30.252.0/22
sudo ufw allow from 20.201.28.152/32
sudo ufw allow from 20.205.243.160/32
sudo ufw allow from 102.133.202.246/32
sudo ufw allow from 20.248.137.50/32
sudo ufw allow from 20.207.73.83/32
sudo ufw allow from 20.27.177.118/32
sudo ufw allow from 20.200.245.248/32
sudo ufw allow from 4.16.249.226
sudo ufw allow to 4.16.249.226
sudo ufw allow from 20.233.54.52/32
sudo ufw allow from 127.0.0.1
# circle-ci
sudo ufw allow from 3.228.39.90
sudo ufw allow from 18.213.67.41
sudo ufw allow from 34.194.94.201
sudo ufw allow from 34.194.144.202
sudo ufw allow from 34.197.6.234
sudo ufw allow from 35.169.17.173
sudo ufw allow from 35.174.253.146
sudo ufw allow from 52.3.128.216
sudo ufw allow from 52.4.195.249
sudo ufw allow from 52.5.58.121
sudo ufw allow from 52.21.153.129
sudo ufw allow from 52.72.72.233
sudo ufw allow from 54.92.235.88
sudo ufw allow from 54.161.182.76
sudo ufw allow from 54.164.161.41
sudo ufw allow from 54.166.105.113
sudo ufw allow from 54.167.72.230
sudo ufw allow from 54.172.26.132
sudo ufw allow from 54.205.138.102
sudo ufw allow from 54.208.72.234
sudo ufw allow from 54.209.115.53
sudo ufw allow to 3.228.39.90
sudo ufw allow to 18.213.67.41
sudo ufw allow to 34.194.94.201
sudo ufw allow to 34.194.144.202
sudo ufw allow to 34.197.6.234
sudo ufw allow to 35.169.17.173
sudo ufw allow to 35.174.253.146
sudo ufw allow to 52.3.128.216
sudo ufw allow to 52.4.195.249
sudo ufw allow to 52.5.58.121
sudo ufw allow to 52.21.153.129
sudo ufw allow to 52.72.72.233
sudo ufw allow to 54.92.235.88
sudo ufw allow to 54.161.182.76
sudo ufw allow to 54.164.161.41
sudo ufw allow to 54.166.105.113
sudo ufw allow to 54.167.72.230
sudo ufw allow to 54.172.26.132
sudo ufw allow to 54.205.138.102
sudo ufw allow to 54.208.72.234
sudo ufw allow to 54.209.115.53
sudo ufw allow from 18.214.70.5
sudo ufw allow from 52.20.166.242
sudo ufw allow from 18.214.156.84
sudo ufw allow from 54.236.156.101
sudo ufw allow from 52.22.215.219
sudo ufw allow from 52.206.105.184
sudo ufw allow from 52.6.77.249
sudo ufw allow from 34.197.216.176
sudo ufw allow from 35.174.249.131
sudo ufw allow from 3.210.128.175
sudo ufw allow to 52.20.166.242
sudo ufw allow to 18.214.156.84
sudo ufw allow to 54.236.156.101
sudo ufw allow to 52.22.215.219
sudo ufw allow to 52.206.105.184
sudo ufw allow to 52.6.77.249
sudo ufw allow to 34.197.216.176
sudo ufw allow to 35.174.249.131
sudo ufw allow to 3.210.128.175
# VPN ip
sudo ufw allow from $VPNIP
sudo ufw allow to $VPNIP
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment