UFW blocking interface even though it is allowed

NosIreland

8/12/23, 5:44 PM

I am running Ubuntu 20.04 with wireguard and Kubernetes. Traffic between nodes is going through wireguard interface wg0. No matter what I do some traffic is being blocked by UFW. I have the following rules to allow traffic:

6443                       ALLOW       Anywhere
Anywhere                   ALLOW       10.0.0.0/24
Anywhere on wg0            ALLOW       Anywhere

But UFW still is blocking the traffic for that port, subnet and interface.

[766669.180143] [UFW BLOCK] IN=wg0 OUT= MAC= SRC=10.0.0.22 DST=10.0.0.12 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=33656 DPT=6443 WINDOW=0 RES=0x00 RST URGP=0

I suspect this is because there are no OUT interface or MAC. Is there anything I can do to allow traffic?

0 + 0

linux

ubuntu

ufw

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: UFW blocking interface even though it is allowed

TH: อินเทอร์เฟซการบล็อก UFW แม้ว่าจะได้รับอนุญาตก็ตาม

RO: Interfață de blocare UFW chiar dacă este permisă

RU: UFW блокирует интерфейс, даже если он разрешен

VI: Giao diện chặn UFW mặc dù nó được cho phép

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.