Please note that the various rules files are there for admins to adjust as needed. However, to work with other programs on the system, I reiterate that by default ufw will not flush anything it doesn't manage itself (MANAGE_BUILTINS, as mentioned, controls this behavior). If someone adds rules to these files then care is needed to add rules to remove them. You could add flush rules to do this like has been posted above, but as posted this is not much different from setting MANAGE_BUILTINS=yes. Perhaps you would like to instead add to the nat table your own chain, adding your rules to the chain, and then flush that chain (this is what ufw does internally for its chains).
Maciej mentioned after_up, after_down, before_up and before_down. Please note that these days ufw supports something similar with its /etc/ufw/after.init and /etc/ufw/before.init scripts. See 'BOOT INITIALIZATION' in 'man ufw-framework' for details. Progress has been made on nat and other routing rules, so ufw will start to manage some of these others tables in a similar fashion as the filter table (thought it's been slow going). -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/881137 Title: UFW does not clean iptables setting from /etc/ufw/before.rules To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ufw/+bug/881137/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
