Changes

# You also need to set port forwarding in your router. The necessary steps to do this differs per router and therefore I need to refer you to the manual of your router. Be sure to forward the port to the IP address of your Raspberry Pi and the port you are forwarding is 8767. You can find the IP address using the <code>ifconfig</code> command. It is either <code>192.168.X.X</code> or <code>10.0.X.X</code>.

#Next, we are going to install ''Uncomplicated Firewall'' (''ufw''): <pre>sudo apt install ufw</pre> '''Note:''' ''ufw'' default rules allow for all outgoing connections, but block all incoming connections. <br /><br /> '''Optional:''' If you plan on using SSH to access your raspberry pi, make sure that ssh access is allowed (but limited): <pre>sudo apt install ufw</pre> '''Optional:''' You might want to add a few more limitations on ssh. For example if you’re planning on accessing your node from local network only. Depending on your local network: <pre>sudo ufw allow from 192.168.1.0/24 to any port 22</pre> Or <pre>sudo ufw allow from 10.0.0.0/24 to any port 22</pre> And/or if you have a dedicated static IP, for example: <pre>sudo ufw allow from 16.32.64.128 to any port 22</pre>

# Enable Firewall: <pre>sudo ufw enable</pre>

# To make it a bit more difficult for someone trying to brute force his way in. We are going to give timeouts when the login password was wrong 5 times using Fail2Ban: <pre>sudo apt install fail2ban</pre> To see the banlist: <pre>sudo fail2ban-client status &#10;&#10;Example output:&#10; Status|- Number of jail: 1&#10;`- Jail list: sshd</pre>