# 1. 首先查看当前状态
sudo ufw status
# 应该显示:Status: inactive
# 2. 添加必要的规则(在启用前配置好)
sudo ufw allow ssh # 允许SSH连接(非常重要!)
sudo ufw allow ‘Nginx HTTP’
sudo ufw allow ‘Nginx HTTPS’ # 如果需要HTTPS
# 3. 查看添加的规则
sudo ufw show added
# 4. 启用防火墙
sudo ufw enable
# 会提示:Command may disrupt existing ssh connections. Proceed with operation (y|n)?
# 输入 y 确认
# 5. 重新加载规则
sudo ufw reload
# 6. 查看完整状态
sudo ufw status verbose