@ -164,10 +164,6 @@ All results have been written to the log file: /var/log/rkhunter.log
# 3. Firewall
***Note, Aug. 11th : There are some UFW test for the deb. SN installer on-going therefore it is recommended to keep UFW disable as
long as test are not finished.***
By default, Ubuntu comes with the [Uncomplicated FireWall](https://en.wikipedia.org/wiki/Uncomplicated_Firewall) (UFW). It’s default setting is inactive. Before you activate UFW **you have to ensure that ssh connection is allowed**.
Allow ssh connection to your VPS :
@ -182,13 +178,17 @@ sudo ufw enable
UFW will show you a ssh-warning which you can now accept by typing a ‘yes’ and hit Enter to continue.
You should close all ports and explicitly open all ports which Loki service nodes requires to operate with the Loki network. Luckily, the latest deb package is doing the job for you. So, hereafter just a list of Loki SN port:
You should close all ports and explicitly open all ports which oxen service nodes requires to operate with the Loki network. Luckily, the latest deb package is doing the job for you. So, hereafter just a list of oxen service node ports:
To ensure that all required ports are open you can command the following:
```
ports 22022,22025,38156,38159/tcp for the loki-daemon
ports 22020,22021,38154,38155/tcp for the loki-storage-server
port 1090/udp for the lokinet-router
(port 22023 tcp for lokid RPC this is not required for Loki service nodes)
sudo ufw allow 1090/udp
sudo ufw allow 22020/tcp
sudo ufw allow 22021/tcp
sudo ufw allow 22022/tcp
sudo ufw allow 22023/tcp
sudo ufw allow 22025/tcp
```
Remark: As long as you are using the standard ports. This port rules are defined in `/etc/ufw/applications.d` (for the deb package only).
