fix: ensure that ufw is enabled

2026-02-17 15:25:37 +00:00 · 2025-09-03 17:08:09 +02:00
parent 8fd668fbb3
commit 0723059fb3
2 changed files with 16 additions and 0 deletions
--- a/install/first-run/firewall.sh
+++ b/install/first-run/firewall.sh
@@ -17,6 +17,9 @@ sudo ufw allow in proto udp from 172.16.0.0/12 to 172.17.0.1 port 53 comment 'al
 # Turn on the firewall
 sudo ufw --force enable

+# Enable UFW systemd service to start on boot
+sudo systemctl enable ufw
+
 # Turn on Docker protections
 sudo ufw-docker install
 sudo ufw reload
--- a/migrations/1756911131.sh
+++ b/migrations/1756911131.sh
@@ -0,0 +1,13 @@
+echo "Enable UFW systemd service for existing installations"
+
+# Check if UFW is installed and configured but systemd service not enabled
+if command -v ufw >/dev/null 2>&1; then
+  # Check if UFW has rules configured (indicating it was set up by Omarchy)
+  if sudo ufw status | grep -q "Status: active\|22/tcp\|53317"; then
+    # Enable UFW systemd service if not already enabled
+    if ! systemctl is-enabled ufw >/dev/null 2>&1; then
+      sudo systemctl enable ufw
+      echo "UFW systemd service enabled"
+    fi
+  fi
+fi