vor 13 Tagen

UFW Firewall guide for Bitcoin/Lightning nodes — what to open, what to never touch

Posted a new guide in my sovereign-linux-tools repo. The short version: most nodes I've seen have no firewall configured at all. Default Linux accepts connections on every port.

The guide covers:

- Default policies (deny incoming is the only sane starting point)

- Exactly which ports to expose: 8333 for Bitcoin P2P, 9735 for LND P2P

- What to never expose: RPC (8332), LND gRPC (10009), REST (8080)

- SSH tunnel pattern for remote gRPC access instead of opening the port

- Rate limiting + Fail2ban on Ubuntu 24 (there's a known issue with banaction that breaks banning after enabling UFW)

- nmap audit command to verify what's actually visible from outside

All commands are copy-paste ready, tested on Ubuntu 24 LTS.

Repo: https://github.com/shadowbipnode/sovereign-linux-tools

Feedback welcome — especially if you run a different stack (CLN, Umbrel, etc.) and the port list needs expanding.

submitted by /u/Large-Cress900 to r/Bitcoin
[link] [comments]

Quelle: bitcoin-en

Best exchange for small volume traders?vor 6 Stunden
Can we finally admit the Lightning Network narrative completely contradicts Bitcoin's security model? Maxis are in denial.vor 6 Stunden
Crazy that so many are still buying BTC just for fiat gainsvor 7 Stunden
Grayscale Says Bitcoin Needs Buyers Beyond Strategyvor 7 Stunden
Posted that I regret buying BCH a few years ago, BCH mods removed immediately... Seems unreasonable, can't we question?vor 7 Stunden
Long term leveraged long ideavor 8 Stunden
The Bitcoin Farmervor 8 Stunden
XYZVault - "we can't see your data" vs "we won't look." Does that distinction matter to you?vor 8 Stunden
Diary of a lazy BTC investorvor 9 Stunden
Mentor Monday, June 08, 2026: Ask all your bitcoin questions!vor 9 Stunden

**UFW Firewall guide for Bitcoin/Lightning nodes — what to open, what to never touch**

UFW Firewall guide for Bitcoin/Lightning nodes — what to open, what to never touch