What UFW rules do I need to setup for internal Digital Ocean Servers

I recently enabled UFW and am now seeing a lot of blocks on it. What default servers specific to Digital Ocean do I need to setup?


You’re seeing crawlers and bruteforcers hitting your box, it’s normal and as long as you’re using key authentication, there’s not much to worry about.

Submit an answer
You can type!ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

This is kind of an open ended question which really the answer is you only need to open the ports you intend to use.

For example you will want port 22 open to communicate with your droplet via SSH. If you change your ssh default port you will need to update UFW to reflect that change.

Second you will need to open ports for services you intend to offer. ie. web and web ssl you will need ports 80 & 443 open respectively.