You mentioned in the description that you were modifying the POSTROUTING builtin. ufw does not (currently) manage this particular built-in in any manner and there are no ufw chains in this built-in. Because other software legitimately adds rules to the built-in chains (eg, libvirt), like POSTROUTING, ufw errs on the safe side and does not clear the builtins. If your environment is such that only ufw is managing the firewall, then using MANAGE_BUILTINS=yes is the correct option for you.
As for all the ufw-* chains, if you use 'ufw reload' then these chains should be correctly flushed and zeroed. See 'man ufw-framework' for details. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/881137 Title: UFW does not clean iptables setting from /etc/ufw/before.rules To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ufw/+bug/881137/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
