...[UFW AUDIT] IN= OUT=eth0 SRC=176.58.105.134 DST=194.238.48.2 LEN=76 TOS=0x1

1. ...
2.  
3. [UFW AUDIT] IN= OUT=eth0 SRC=176.58.105.134 DST=194.238.48.2 LEN=76 TOS=0x10 PREC=0x00 TTL=64 ID=32137 DF PROTO=UDP SPT=36231 DPT=123 LEN=56
4. [UFW ALLOW] IN= OUT=eth0 SRC=176.58.105.134 DST=194.238.48.2 LEN=76 TOS=0x10 PREC=0x00 TTL=64 ID=32137 DF PROTO=UDP SPT=36231 DPT=123 LEN=56
5. [UFW AUDIT] IN= OUT=lo SRC=192.168.192.254 DST=192.168.192.254 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=54579 DF PROTO=TCP SPT=59488 DPT=30002 WINDOW=32792 RES=0x00 SYN URGP=0
6. [UFW AUDIT] IN=lo OUT= MAC=00:00:00:00:00:00:00:00:00:00:00:00:08:00 SRC=192.168.192.254 DST=192.168.192.254 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=54579 DF PROTO=TCP SPT=59488 DPT=30002 WINDOW=32792 RES=0x00 SYN URGP=0
7. [UFW AUDIT] IN=lo OUT= MAC=00:00:00:00:00:00:00:00:00:00:00:00:08:00 SRC=192.168.192.254 DST=192.168.192.254 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=4319 DF PROTO=TCP SPT=59489 DPT=30002 WINDOW=32792 RES=0x00 SYN URGP=0
8.  
9. ...
10.  
11. ufw-before-logging-input all -- anywhere anywhere
12. ufw-after-logging-input all -- anywhere anywhere
13. ufw-before-logging-forward all -- anywhere anywhere
14. ufw-after-logging-forward all -- anywhere anywhere
15. ufw-before-logging-output all -- anywhere anywhere
16. ufw-after-logging-output all -- anywhere anywhere
17. Chain ufw-after-logging-forward (1 references)
18. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW BLOCK] "
19. Chain ufw-after-logging-input (1 references)
20. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW ALLOW] "
21. Chain ufw-after-logging-output (1 references)
22. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW ALLOW] "
23. ufw-logging-deny all -- anywhere anywhere ctstate INVALID
24. Chain ufw-before-logging-forward (1 references)
25. LOG all -- anywhere anywhere ctstate NEW limit: avg 3/min burst 10 LOG level warning prefix "[UFW AUDIT] "
26. Chain ufw-before-logging-input (1 references)
27. LOG all -- anywhere anywhere ctstate NEW limit: avg 3/min burst 10 LOG level warning prefix "[UFW AUDIT] "
28. Chain ufw-before-logging-output (1 references)
29. LOG all -- anywhere anywhere ctstate NEW limit: avg 3/min burst 10 LOG level warning prefix "[UFW AUDIT] "
30. Chain ufw-logging-allow (0 references)
31. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW ALLOW] "
32. Chain ufw-logging-deny (2 references)
33. LOG all -- anywhere anywhere ctstate INVALID limit: avg 3/min burst 10 LOG level warning prefix "[UFW AUDIT INVALID] "
34. LOG all -- anywhere anywhere limit: avg 3/min burst 10 LOG level warning prefix "[UFW BLOCK] "
35. ufw-logging-deny all -- anywhere anywhere limit: avg 3/min burst 10
36. LOG all -- anywhere anywhere limit: avg 3/min burst 5 LOG level warning prefix "[UFW LIMIT BLOCK] "
37. Chain ufw-user-logging-forward (0 references)
38. Chain ufw-user-logging-input (0 references)
39. Chain ufw-user-logging-output (1 references)
40.  
41. # rules.before
42. # ....
43. # allow all on loopback
44. -A ufw-before-input -i lo -j ACCEPT
45. -A ufw-before-output -o lo -j ACCEPT
46. # ....
47.  
48. Mar 17 21:02:21 pc kernel: [133419.183616] [UFW AUDIT] IN=wlp2s0 OUT= MAC= SRC=192.168.1.2 DST=224.0.0.251 LEN=146 TOS=0x00 PREC=0x00 TTL=255 ID=22456 DF PROTO=UDP SPT=5353 DPT=5353 LEN=126
49.  
50. # allow MULTICAST mDNS for service discovery (be sure the MULTICAST line above
51. # is uncommented)
52. -A ufw-before-input -p udp -d 224.0.0.251 --dport 5353 -j ACCEPT
53.  
54. sudo ufw deny 5353