First thing to do after installing Linux Mint 17.3

FirewallD Firewall Configuration

Linux Mint 17.3 was released two days ago. If you upgraded from an existing installation of Linux Mint 17.2, you likely have configured it to your liking and have all the security applications you need in place.

If so, you may stop reading and click here to read other articles on Linux Mint.

If, however, you installed a fresh copy of Linux Mint 17.3 (Cinnamon or MATE) on our computer, this article shows you the very first thing to do after logging in. That “very first thing” is no secret, but it’s a simple task that many users ignore.

That simple task is: Enable and configure a firewall application.

The default firewall application on Linux Mint 17.3 is UFW, the Uncomplicated FireWall. UFW is easy to use, however, it lacks support for network zones. If you need that feature, the best firewall application to install is called FirewallD, which is the default firewall application on recent editions of Fedora.

This article shows how to enable UFW via its graphical interface and install FirewallD as a replacement for UFW. Keep in mind, however, that you only need to run one firewall application. So it’s either UFW or FirewallD, not both.

1. Enable UFW from Gufw on Linux Mint 17.3
The easiest method of enabling UFW is via a graphical interface called Gufw. But Gufw is not installed by default, so you first have to install it, which you can do from the command line or by using a graphical package manager. From the command line, install it using the following command:

# This is a command
# Copy and paste the following command
 
sudo apt-get install gufw

# 

You may also install it using one of two graphical package managers installed on Linux Mint 17.3 (Software Manager and Synaptic Package Manager). To use Synaptic Package Manager, launch it from the menu, then search for “gufw”. Mark it for installation, then install it.

Install Gufw on Linux Mint 17.3
Figure 1: Installing Gufw from Synaptic Package Manager

After installation, search for and launch it from the applications menu.

Launch Gufw Linux Mint 17.3
Figure 2: Launch Gufw from the menu

Bu default, it’s not enabled, so click on the Status switch to enable it.

Gufw in disabled mode
Figure 3: Gufw in disabled mode

When enabled, the default configuration allows all outgoing traffic, but denies all incoming unless those related to an established connection. In that state, the firewall is said to be in stateful inspection. Unless you need to create new rules for specific traffic, that’s all you need to have your Linux Mint 17.3 installation protected by the UFW firewall application.

Gufw in enabled mode
Figure 4: Gufw in enabled mode

But there’s a problem with UFW: It lacks support for network zones. So from the NetworkManager settings, the Firewall zone combo box is not clickable. That shouldn’t be an issue if you have no need for network zones, but if you do, then you need to uninstall or disable UFW, and install FirewallD in its place.

Linux network zones
Figure 5: UFW lacks support for network zone

2. Installing FirewallD on Linux Mint 17.3
Complete this section only if you need to replace UFW with FirewallD, which would entail uninstalling UFW afterwards.

Related Post:  How to install Linux Mint 10 on a btrfs file system

Like Gufw, you may install FirewallD and its components from the command line or by using one of the installed graphical package managers. From the command line, use the following command to install it:

# This is a command
# Copy and paste the following command
 
sudo apt-get install firewall-applet

# 

Or from the Synaptic Package Manager, search for “firewalld”, then mark and install it.

Install FirewaD Liux Mint 17.3
Figure 6: Installing FirewallD on Linux Mint 17.3

As with all daemons on Debian-based distributions, the FirewallD daemon is automatically started after installation. In addition, the applet is auto-included in the list of startup applications, so if you view that list from the Startup Applications module of the distribution’s System Settings, you should see it listed. To start using the applet, log out, then log back in.

startup applications Linux Mint 17.3
Figure 7: Verify firewall-applet as a startup application on FirewallD on Linux Mint 17.3

An icon for the applet should then appear in the systray. The entries in the applet’s context menu are shown in Figure 8.

FirewallD firewall-applet Linux Mint 17.3
Figure 8: FirewallD firewall-applet on Linux Mint 17.3

From the NetworkManager settings, there should be several options in the Firewall zone combo box. The default firewall zone is public.

FirewallD network zones on Linux Mint 17.3
Figure 8: FirewallD network zones on Linux Mint 17.3

And if you need to make changes to the firewall rules and configuration without using the command line interface, FirewallD comes with a feature-rich graphical interface which you can launch from the applet (click on the Edit Firewall Settings entry) or from the applications menu (search for “firewall configuration”). Figure 9 shows the main interface of the graphical interface. As with UFW/Gufw, the default configuration of FirewallD is good enough for most users. If you need to create extra rules, the Rich Rules tab offers a user-friendly interface to do just that.

FirewallD Firewall Configuration
Figure 9: Firewall Configuration, the graphical interface for FirewallD

If you installed FirewallD, you may now uninstall UFW by using the following command:

# This is a command
# Copy and paste the following command
 
sudo apt-get remove ufw

# 

And that the end!

Related Post:  How to install Ubuntu 13.10 and Linux Mint 16 on a Btrfs filesystem

Share:

Share on facebook
Facebook
Share on twitter
Twitter
Share on pinterest
Pinterest
Share on linkedin
LinkedIn

Hola! Did you notice that LinuxBSDos.com no longer run network ads?  Yep, no more ads from the usual suspects that track and annoy you across the Internet. But since I still need to pay to keep the site running, feel free to make a small donation by PayPal or your favorite cryptocurrency.

  • Bitcoin
  • Ethereum
  • Xrp
  • Bitcoin cash
  • Bitcoin sv
  • Litecoin
  • Binance coin
  • Cardano
  • Ethereum classic
Scan to Donate Bitcoin to bc1qzvlte2m224zkayhdc7fdfjkp2rsgt0l5a496ua

Donate Bitcoin to this address

Scan the QR code or copy the address below into your wallet to send some Bitcoin

Scan to Donate Ethereum to 0x0F4362DFF77F3Ba0Dc637F5f3Eba35D09a2fA60C

Donate Ethereum to this address

Scan the QR code or copy the address below into your wallet to send some Ethereum

Scan to Donate Xrp to r4ggjvL36njsMCYTkJ3S7cTHscPsMsSGQv

Donate Xrp to this address

Scan the QR code or copy the address below into your wallet to send some Xrp

Scan to Donate Bitcoin cash to qrs0dedzp9t55af3nfwypydghp29r0xguy9s20fz2k

Donate Bitcoin cash to this address

Scan the QR code or copy the address below into your wallet to send some Bitcoin cash

Scan to Donate Bitcoin sv to 15K9TLyVDBtLuG9cYvXCX9SSkq9C9oUKHK

Donate Bitcoin sv to this address

Scan the QR code or copy the address below into your wallet to send some Bitcoin sv

Scan to Donate Litecoin to LetJ9QQMb7u2LMZ9Tu6rtHwcBcQFW98fbG

Donate Litecoin to this address

Scan the QR code or copy the address below into your wallet to send some Litecoin

Scan to Donate Binance coin to bnb1ga8trq08ssqepd90v6225nzfgy448pu5pw8gxp

Donate Binance coin to this address

Scan the QR code or copy the address below into your wallet to send some Binance coin

Scan to Donate Cardano to addr1qx2354yw49etstfljpdhwja3ajjlt487lg95vu9ngy2q6vu4rf2ga2tjhqknlyzmwa9mrm997h20a7stgectxsg5p5esq5l7d9

Donate Cardano to this address

Scan the QR code or copy the address below into your wallet to send some Cardano

Scan to Donate Ethereum classic to 0xcD6CC972a2297FcafACDcfE042C55C69516a9264

Donate Ethereum classic to this address

Scan the QR code or copy the address below into your wallet to send some Ethereum classic

Subscribe for updates. Trust me, no spam!

Sponsored links

1. Attend Algorithm Conference, a top AI and ML event.
2. Reasons to use control panel for your server.
3. DHgate Computers Electronics, Cell Phones & more.

Upcoming events

One Response

  1. Interesting article, but it would have been more useful to the less sophisticated if “network zones” and their usefulness had been given two or three sentences.

Leave a Reply

Your email address will not be published. Required fields are marked *

Get the latest

On social media
Via my newsletter

Partner links

1. Attend Algorithm Conference, a top AI and ML event for 2021.
2. Reasons to use control panel for your server.
3. DHgate Computers Electronics, Cell Phones & more.
Hacking, pentesting distributions

Linux Distributions for Hacking

Experts use these Linux distributions for hacking, digital forensics, and pentesting.

Categories
Archives

The authors of these books are confirmed to speak during

Algorithm Conference

T-minus AI

Author was the first chairperson of AI for the U.S. Air Force.

The case for killer robots

Author is the Director of the Center for Natural and Artificial Intelligence.

Why greatness cannot be planned

Author works on AI safety as a Senior Research Scientist at Uber AI Labs.