So I wanted to run a test on a new VM i am setting up, so free version of Virtualmin is being installed.
Prior to Virtualmin install, I enabled UFW for the OS. But once I installed Virtualmin, it appears that UFW was completely removed. When i run 'sudo ufw status" is shows it as command not found.
Is this normal? I would think without it enabled, I cant open up ports like 10000 or mail ports for the servers on Virtualmin to use.
I can go back after the fact and install and enable UFW, but then the system loses internet connection.
Every Virtualmin install I’ve done has used firewallD, but I use Rocky or Centos.
Joe explained above that you can remove firewallD and add UFW, but not sure what GUI you get as I’ve never used it.
port 10000 should be open in the firewall.
Maybe the install you did pre-install is causing a conflict. Virtualmin should be installed on a clean OS without installing anything first.
It’s been the default since Virtualmin 6. So, a few years.
Our docs say “don’t preinstall or preconfigure anything before installing Virtualmin”, so you should generally follow the docs.
You can switch to ufw, or any other changes to the services you want to make, after installation. But, you’ll also need to make sure fail2ban is correctly configured for it, if you want to use fail2ban (I’m not sure if it needs anything custom for ufw, as I don’t use ufw…it probably can still just manage the rules with ipset, since everybody is using iptables on the backend).
So i think i need to look at my VM setup on my network. My VM is on Unraid and im using Nginx Proxy Manger to help handle a couple of docker containers . Just need to figure out how to get my Virtualmin instance out through NPM
Probably no one here runs NPM, I presume its doing some sort of routing of traffic so its best you take it up with the NPM community. Have you got a diagram of where VM sits in your network.
When i say look at my VM setup on my network, I mean Virtual Machine and its network setup in relation to the Network. ie: my hypervisor is Unraid. I also run NPM to host other things like docker. My ISP also has its firewall for the whole network. So yes, i do need to check the settings up until my VM. Because something is obviously not right.
No changes have been made to the VM OS, except installed Virtualmin.
If I may add to the post. I use ConfigServer Security & Firewall as it is a more reliable UFW and works 100% in Virtualmin. It also incorporate lfd as part of the firewall.