Personal Account

Registration and access

Account Verification (KYC)

Client Area in the SpaceCore Dashboard

Payments & Finance

Section “Finances” in the SpaceCore client area

VAT for Customers from EU Countries and the UK

Orders & Support

How to order a VPS/VDS

How to order a dedicated server?

How to Contact SpaceCore Support?

How to Get a Free VDS from SpaceCore

Communications and Notifications

Notifications

Telegram notifications from your SpaceCore account

Integrations and bots

How to Use a Telegram Ping Bot to Monitor Servers

Status & Reference (Policies, Limits, Terms)

Restrictions & Policy

Blocked Ports on VPS/VDS

Blocking Access to Private Networks on Ubuntu Using UFW

Terminology and Metrics

What Is IOPS and Why It Matters for Your Servers

Servers: VPS/VDS and dedicated

Start and management

Connecting to a Linux virtual server

Connecting to a Windows VPS server

Reinstalling the operating system on a VPS/VDS

How to Change VPS/VDS Password via VMmanager 6 Panel

Guide to the Pterodactyl game hosting panel

Providers: Hetzner

Managing a Hetzner Server

Changing the root password on a Hetzner server via Rescue

Installing an OS on a Hetzner Server: Robot and installimage

Hetzner AntiDDoS: How DDoS Protection Works for Your Servers

Providers: Contabo

Contabo VPS Control Panel Overview

Expanding Disk Space on Contabo VPS

Linux: access, administration, security

Access and Accounts

Connecting to a Server with SSH Keys on Windows (PuTTY)

Disabling Linux Password Access

Recovering the Linux root password in rescue mode

Software and Environments

Getting started with Screen in Linux

Deploying MikroTik RouterOS on a VDS

Files and Storage

Linux Storage Mounting: A Practical Guide

Retrieving Disk Serial Numbers on Linux

Backups and FTP

Working with SpaceCore FTP Storage

Automating Backup Uploads to FTP Storage

Installing and Configuring a ProFTPD FTP Server

Networking and Diagnostics (Linux)

IPTables Configuration: Rules and Examples

Changing MTU on Windows and Linux

Working with TCPDump: basics and filters

Measuring Network Speed in Linux with Speedtest CLI

DNS error “Temporary failure resolving…”: how to fix it

How to Collect Network Traceroute on Linux and Windows

Monitoring Network Traffic with VnStat

Windows: Access, Administration, Networking

Connection and Access

Connecting to a Windows Server via RDP

Configuring RDP Connection Settings in Windows

Resetting a Forgotten Windows Server Password via SystemRescueCD

Downloading Files in Internet Explorer on Windows Server

Network and OS

Adding an Additional IPv4 Address in Windows Server

Installing Windows via QEMU

Security

Windows Server admin lockout and access recovery

Web Stack and Databases

Web Servers

Installing and Configuring Nginx on a Server

Installing and Configuring Apache2 on Linux

Languages and PHP Environment

Installing and configuring PHP on a server

Databases

Installing and configuring MySQL (MariaDB)

Connecting phpMyAdmin to MySQL

Certificates and Domains

Generating a Free Let’s Encrypt SSL Certificate

VPN & Privacy

Client: Access and Applications

Using Nekoray: configuring a secure VPN via Sing-box

Proxying Specific Websites with V2RayN

How to connect to VLESS VPN (phone/PC)

Server: Installation and Control Panels

WireGuard VPN Easy: setup with Docker and WG-Easy

OpenVPN [Easy]: Easy VPN Setup and Configuration on a Server

Outline VPN Installation

Installing and Configuring the 3X UI VPN Panel

Installing Marzban: Web Panel for Proxy Servers

Game Hosting: Minecraft

Server Setup

Installing a Minecraft Java Server (Paper 1.16.5)

Installing a Minecraft Bedrock/PE Server on Ubuntu 20.04

Configuration and Customization

Configuring server.properties: complete guide for a Minecraft server

Installing a Server Icon in Minecraft

Startup Parameters and Optimization for a Minecraft Server

Setting Up a Resource Pack on a Minecraft Server

AI and ML

Model Deployment

Deploying DeepSeek on Your Own Server in a Few Clicks

Reselling

BILLmanager

Configuring BILLmanager 6 for Reselling with SpaceCore

Blocking access to private networks

You may suddenly start receiving complaints from the data center about private network scanning, even though you did not intend to do this. To resolve this issue, you can block all private networks using the ufw firewall.

Installing ufw

First, check whether the ufw utility is present on your server and install it if necessary:

sudo apt install ufw

Next, before enabling ufw, you need to open the important ports so you do not lose access to your services. Allow the ports used by SSH, HTTP and HTTPS:

sudo ufw allow 22

sudo ufw allow 80

sudo ufw allow 443

That’s it. Now you can enable the firewall:

sudo ufw enable

You can check the current firewall status with the following command:

sudo ufw status

Blocking private networks

Now we can proceed to blocking private networks to prevent any outbound connections to them from your server.

The following ranges are considered private networks:

10.0.0.0/8
172.16.0.0/12
192.168.0.0/16
100.64.0.0/10 (CGNAT)

Blocking these networks (and several special-use ranges) is quite simple — use the following commands:

sudo ufw deny out from any to 10.0.0.0/8

sudo ufw deny out from any to 172.16.0.0/12

sudo ufw deny out from any to 192.168.0.0/16

sudo ufw deny out from any to 100.64.0.0/10

sudo ufw deny out from any to 198.18.0.0/15

sudo ufw deny out from any to 169.254.0.0/16

After adding the rules, check their status again:

sudo ufw status


# Or using iptables:
iptables-save

Now, if we try to access an address from a private network, we will get an error. For example, using the ping command:

ping 198.18.22.62

This completes the configuration for blocking private networks.

Unblocking networks (if required)

If you later need to re-enable access to one of the blocked networks, first display the numbered list of current ufw rules:

sudo ufw status numbered

Then delete the required rule by its number (replace N with the actual rule number from the output of the previous command):

sudo ufw delete N

For example, let’s delete rule #7:

sudo ufw delete 7

Now, any subsequent attempt to access the address 198.18.22.62 will no longer be restricted:

Thank you for reading! You now know how to block (and unblock) your server’s access to private networks using ufw.