Install a graphical firewall client on Ubuntu 9.10

UbuntuAlthough Ubuntu 9.10 (aka Karmic Koala) ships with a command line firewall script – ufw (Uncomplicated FireWall) – for configuring IPTables (netfilter), the firewall application built into the Linux kernel, it does not come with a graphical firewall client for use by those not comfortable with managing IPTables from the command line. So in order to configure IPTables using a graphical interface, you will have to install one yourself.

Luckily, the graphical interface to ufw, Gufw, is in the main repository, and you can install it from a shell terminal, via Synaptic, or via the new Ubuntu Software Center. For this tutorial, let’s install it from Ubuntu Software Center.

From the menu click on Applications > Ubuntu Software Center, and type in ‘gufw’ in the search bar. You may type in ‘firewall’ if you want to see all the other (graphical) firewall clients available. The screenshot below shows the results of my search. Select Gufw and click on the arrow at the end of the line.

Gufw search

On this next screen shown below, click on the Install button. After authenticating, it will only take about a minute for the installation to complete.

Install Gufw
Installing Gufw

An entry for Gufw will be placed in the menu tree at System > Administration > Firewall configuration. By default, Gufw is not enabled as shown in the screenshot below. To enable it, click on the check box next to Enabled.

Gufw – disabled
Gufw disabled

Gufw enabled
Gufw enabled

The default firewall policy is to deny all connections to the PC on which Gufw is guarding. Outbound connections are permitted. If you need to, you may modify the default policy by clicking on the ‘Add’ button. Gufw has several preconfigured services and programs that you may select from, or you may just create one.

For each program or service, you may choose to Allow, Deny, Reject, or rate Limit it. Denying a connection will silently drop it while rejecting a connection will drop it and send a message back to the source address. For obvious reasons, it is better to Deny rather than Reject (Note: There is more to this than my simple explanation here, but in the spirit of ufw, I have chosen to keep the explanation uncomplicated).
Policy preconfigured

Several services – FTP, IMAP, POP3, SMTP, IPP, VNC, NFS, ssh, Telnet, and Netbios-ssn – are already preconfigured.
Preconfigured services

Some programs – Amule, Deluge, Nicotine, Transmission, KTorrent, qBittorent – preconfigured programs.
Preconfigured programs

The ‘Simple’ configuration tab allows you to set very basic policies. For example. you may Allow, Deny, Reject, or rate Limit a TCP or UDP connection by port number or port range.
Simple configuration

On the ‘Advanced’ configuration tab, you can set more specific policies as shown below.
Advanced configuration

This is a screenshot of the main window showing example policies added from the last two screenshots above.
Added policies

Compared to other graphical firewall clients, Gufw is very simple to use. However, it offers fewer “advanced” configuration options, and it is not minimized to the system tray when you close the application window. If you need a firewall client with more configuration bells and whistles, you should try Firestarter or KMyFirewall. Both are available in Ubuntu’s repository.

Related Posts

New storage options for Anaconda on Fedora 13 Fedora 13 Beta has just been released for testing and bug reporting, with the stable version slated for release in May. Thanks to boot.fedoraproject.o...
Install Fedora 16 on an encrypted btrfs file system Btrfs was supposed to have been the default file system for Fedora 16, but for technical reasons, that did not happen. Word on the street says it will...
Dual-boot Windows 8 and Linux Mint 17 on a PC with 2 disks and UEFI firmware This tutorial shows how to dual-boot Linux Mint 17 and Windows 8 on a computer with two hard drives and UEFI firmware. For a guide on how to perform t...
Configurable mintMenu stops working after upgrading to Linux Mint 17.2 Configurable Menu is a Cinnamon Menu I installed on my desktop installation of Linux Mint 17.1, which I just upgraded to Linux Mint 17.2. It's a menu ...
How to install WebGoat on Ubuntu 14.04, 15.04 and 15.10 WebGoat is a deliberately insecure, Java web application designed for the sole purpose of teaching web application security lessons. The officially-st...
How to dual-boot Fedora 18 and Windows 8 on 1 HDD, with GRUB in a PBR This is the latest article on Fedora on this website. To view the complete list of Fedora-related articles, visit the distribution's category page at ...

We Recommend These Vendors and Free Offers

ContainerizeThis 2016 is a free, 2-day conference for all things containers and big data. Featured, will be presentations and free, hands-on workshops. Learn more at

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).

Want to become an expert ethical hacker and penetration tester? Request your free video training course of Online Penetration Testing and Ethical Hacking

Whether you're new to Linux or are a Linux guru, you can learn a lot more about the Linux kernel by requesting your free ebook of Linux Kernel In A Nutshell.


  1. Thanks a ton !
    Very useful information to protect our desktops against attacks.

  2. There is obviously a lot to know about this.

  3. what a great site and informative posts, I will add backlink – bookmarked this site? Regards,

  4. Pingback: Install a graphical firewall client on Ubuntu 9.10 :Addz It Now

Leave a Comment

Your email address will not be published. Required fields are marked *