{"description": "The Linux kernel in Ubuntu provides a packet filtering system called\nnetfilter, and the traditional interface for manipulating netfilter are\nthe iptables suite of commands. iptables provide a complete firewall\nsolution that is both highly configurable and highly flexible.\n\nBecoming proficient in iptables takes time, and getting started with\nnetfilter firewalling using only iptables can be a daunting task. As a\nresult, many frontends for iptables have been created over the years,\neach trying to achieve a different result and targeting a different\naudience.\n\nThe Uncomplicated Firewall (ufw) is a frontend for iptables and is\nparticularly well-suited for host-based firewalls. ufw provides a\nframework for managing netfilter, as well as a command-line interface\nfor manipulating the firewall. ufw aims to provide an easy to use\ninterface for people unfamiliar with firewall concepts, while at the\nsame time simplifies complicated iptables commands to help an\nadministrator who knows what he or she is doing. ufw is an upstream\nfor other distributions and graphical frontends.", "warnings": [], "requires": [], "conflicts": [], "values": {}, "groups": {}, "rules": ["check_ufw_active", "package_ufw_installed", "package_ufw_removed", "service_ufw_enabled", "set_ufw_default_rule", "set_ufw_loopback_traffic", "ufw_only_required_services", "ufw_rate_limit", "ufw_rules_for_open_ports"], "platform": "system_with_kernel", "platforms": ["system_with_kernel"], "inherited_platforms": [], "cpe_platform_names": ["system_with_kernel"], "title": "Uncomplicated Firewall (ufw)", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/system/network/network-ufw/group.yml"}