So I'm trialling Enhance pretty heavily and noticed that no matter what role is installed on a server, the firewall rules all seem to be the same.
For example, I have an Enhance server with just the DNS role, but all of the mail, FTP, etc ports are open from anywhere. Any reason for this? I'm assuming this doesn't need to be the case?
Logically, I just need to lockdown the SSH port, keep a rule open for the rest of the servers in the cluster and 199.99.88.0/23, as well as 53.
In testing, I've noticed that if I delete a particular rule, said deletion persists.
Could someone confirm that a deleted ufw rule won't later be re-created by the cluster at some point, eg an update?
