7 platforms · runs in your browser

Firewall Rule Builder

Build a firewall rule once and export it to iptables, nftables, UFW, Windows Firewall, Cisco ACL or pf syntax.

New rule

ActionDirectionProtocolInterfaceSource IP / CIDRSource portDestination IP / CIDRDestination port

Comment

Rules (0)

No rules yet, add one above or use a preset.

# No enabled rules

About this tool

Build Linux firewall rules interactively and export ready-to-paste iptables or nftables syntax. Choose the chain, protocol, source and destination, ports and action, and the tool assembles correct, copy-pasteable commands so you do not have to memorise flag order.

It is useful for quickly drafting a ruleset for a new server, documenting an existing policy, or learning how an idea maps to actual iptables/nftables commands. Generation happens entirely in the browser.

Frequently asked questions

Does this apply rules to my system?+

No. The tool only generates the command text. You review it and run it yourself on your host, so nothing is changed without your explicit action.

iptables or nftables — which should I use?+

nftables is the modern replacement and is default on most current distributions. New rulesets should target nftables; iptables output is provided for older systems and familiarity.

How do I make rules persist after reboot?+

Use your distro mechanism, such as netfilter-persistent / iptables-save for iptables, or a saved nftables ruleset loaded by the nftables service. The generated commands set the live ruleset.