查看状态：

root@ubuntu:~# ufw status

- 解决ufw与docker连接的问题

如果希望允许外部网络访问 Docker 容器提供的服务，比如有一个容器的服务端口是 80。那就可以用以下命令来允许外部网络访问这个服务：

ufw route allow proto tcp from any to any port 80
ufw allow proto tcp from any to any port 80

- 删除：

ufw delete allow from 172.18.0.0

• 查看规则--带序号
  root@qddx-nqi:~/snap1/mindoc# ufw status numbered
  状态： 激活

  至 动作 来自

  ---

  [ 1] 3389/tcp ALLOW IN Anywhere
  [ 2] 53/tcp ALLOW IN Anywhere
  [ 3] 443/tcp ALLOW IN Anywhere
  [ 4] 22/tcp ALLOW IN Anywhere
  [ 5] 9090 ALLOW IN Anywhere
  [ 6] 8181 ALLOW IN Anywhere
  [ 7] 8080 ALLOW IN Anywhere
  [ 8] 80/tcp ALLOW FWD Anywhere
  [ 9] 8181/tcp ALLOW FWD Anywhere
  [10] 3389/tcp (v6) ALLOW IN Anywhere (v6)
  [11] 53/tcp (v6) ALLOW IN Anywhere (v6)
  [12] 443/tcp (v6) ALLOW IN Anywhere (v6)
  [13] 22/tcp (v6) ALLOW IN Anywhere (v6)
  [14] 9090 (v6) ALLOW IN Anywhere (v6)
  [15] 8181 (v6) ALLOW IN Anywhere (v6)
  [16] 8080 (v6) ALLOW IN Anywhere (v6)
  [17] 80/tcp (v6) ALLOW FWD Anywhere (v6)
  [18] 8181/tcp (v6) ALLOW FWD Anywhere (v6)

- 按序号删除

ufw delete 18

状态： 激活

至 动作 来自

3389/tcp ALLOW Anywhere
53/tcp ALLOW Anywhere
443/tcp ALLOW Anywhere
22/tcp ALLOW Anywhere
9090 ALLOW Anywhere
8181 ALLOW Anywhere
8080 ALLOW Anywhere
3308 ALLOW Anywhere
Anywhere ALLOW 172.17.0.0
Anywhere ALLOW 172.18.0.1
3389/tcp (v6) ALLOW Anywhere (v6)
53/tcp (v6) ALLOW Anywhere (v6)
443/tcp (v6) ALLOW Anywhere (v6)
22/tcp (v6) ALLOW Anywhere (v6)
9090 (v6) ALLOW Anywhere (v6)
8181 (v6) ALLOW Anywhere (v6)
8080 (v6) ALLOW Anywhere (v6)
3308 (v6) ALLOW Anywhere (v6)

80/tcp ALLOW FWD Anywhere
8181/tcp ALLOW FWD Anywhere
3308/tcp ALLOW FWD Anywhere
3306/tcp ALLOW FWD Anywhere
80/tcp (v6) ALLOW FWD Anywhere (v6)
8181/tcp (v6) ALLOW FWD Anywhere (v6)
3308/tcp (v6) ALLOW FWD Anywhere (v6)
3306/tcp (v6) ALLOW FWD Anywhere (v6)