Question about UFW - it is better to have enable it?

Preseeding is a mechanism that is used when you want to install Ubuntu on several computers and want to automate this installation that you do not need answering questions during installation.
see https://help.ubuntu.com/lts/installation-guide/amd64/apbs01.html

if you want to activate or deactivate Ubuntu on a system that is already installed, then you do not use preseeding but just the ufw command

Thank you Manfred for explain. So if I have installed Ubuntu system so I don't need to use preseeding. So this coomand is for preseeding --> ufw ufw/enable boolean true ? This I should only for installation system? If I have enabled UFW I should do something more? I want to have very restrictive firewall rules to improve security. Maybe someone have knowledge about it?

https://help.ubuntu.com/lts/installation-guide/s390x/apb.html

You can provide answers to the installer to use rather than manually inputting them each time. Its used a lot with PXE boot (over networks) to fully configure a system that boots over the network.

If you want to increase security with ufw then you can. If you have no need for asymetric connections to the system (like if you run an SSH server) then just block the lot. Remember to allow the connections going outward that you do use (HTTP / HTTP and so on) or you won't get any web access. You will also need to allow TCP/53 out so that DNS can work too.

Sorry, in my comment #1 it of course has to read "if you want to activate or deactivate UFW on a system that is already installed,..."

So I have question to this command ufw ufw/enable boolean true.
Above command is needed only for installation process? If I will use only ufw enable it is okay? I don't know what is it "boolean true" parameter in this command?

Its to enable ufw on bootup as part of the preseed. You'd then need to specify rules too in order to make it effective

So if I will only enable ufw this mean that in next reboot this will be not bootup. On my friends computer I only enabled UFW . I mean that I installed Ubuntu without enabling ufw next after installation I enabled it via terminal typing sudo ufw enable. So this UFW is not effective now? I want to have very restrictive rules so I should configure it or if I only enabled this means that there are very restricitve rules and I should only configure it if something not working?

iptables and iptables are installed by default. The pre-seed simply sets the firewall to enabled then sets your rules in place to define what traffic is allowed and denied. Did you check the status of the firewall before running the enable? Were your rules effective? Did you set rules? Simply enabling ufw doesn't do anything without rules.

I enabled UFW like in this community tutorial --> https://help.ubuntu.com/community/UFW

 This is my friend's machine so I must know if it have very restrictive rules. Now he have default rules:

youruser@yourcomputer:~$ sudo ufw status verbose
[sudo] password for youruser:
Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), disabled (routed)
New profiles: skip
youruser@yourcomputer:~$

So can you tell me what I should do if I would like to have very restictive rules. If I will stay ufw like this this will be like default configuration when UFW was disabled or I should disable UFW? If I will enable ufw and now I will disable this I must checking what is now iptables rules? How I can restore to default configuration or improve my safety?

This question was expired because it remained in the 'Open' state without activity for the last 15 days.